CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-45814

Missing authentication checks in the query.fcgi endpoint of NS3000 v8.1.1.125110 , v7.2.8.124852 , and v7.x and NS2000 v7.02.08 allows attackers to execute a session hijacking attack.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 28.6%

CVSS Severity

CVSS v3 Score 9.8

References

https://github.com/shiky8/my--cve-vulnerability-research/tree/main/CVE-2025-45814
https://novelsat.com/

Products affected by CVE-2025-45814

Novelsat » Ns2000 » Version: N/A

cpe:2.3:h:novelsat:ns2000:-
Novelsat » Ns3000 » Version: N/A

cpe:2.3:h:novelsat:ns3000:-
Novelsat » Ns2000 Firmware » Version: 7.02.08

cpe:2.3:o:novelsat:ns2000_firmware:7.02.08
Novelsat » Ns3000 Firmware » Version: 7.2.8.124852

cpe:2.3:o:novelsat:ns3000_firmware:7.2.8.124852
Novelsat » Ns3000 Firmware » Version: 8.1.1.125110

cpe:2.3:o:novelsat:ns3000_firmware:8.1.1.125110

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-45814

Products

Pricing

Contact Us