CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-63953

A Cross-Site Request Forgery (CSRF) in the /usapi?method=add-user component of Magewell Pro Convert v1.2.213 allows attackers to arbitrarily create accounts via a crafted GET request.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 3.3%

CVSS Severity

CVSS v3 Score 6.5

References

Products affected by CVE-2025-63953

Magewell » Ultra Encode Aio » Version: N/A

cpe:2.3:h:magewell:ultra_encode_aio:-
Magewell » Ultra Encode Hdmi » Version: N/A

cpe:2.3:h:magewell:ultra_encode_hdmi:-
Magewell » Ultra Encode Hdmi Plus » Version: N/A

cpe:2.3:h:magewell:ultra_encode_hdmi_plus:-
Magewell » Ultra Encode Sdi » Version: N/A

cpe:2.3:h:magewell:ultra_encode_sdi:-
Magewell » Ultra Encode Sdi Plus » Version: N/A

cpe:2.3:h:magewell:ultra_encode_sdi_plus:-
Magewell » Ultra Encode Aio Firmware » Version: 2.3.206

cpe:2.3:o:magewell:ultra_encode_aio_firmware:2.3.206
Magewell » Ultra Encode Hdmi Firmware » Version: 2.3.206

cpe:2.3:o:magewell:ultra_encode_hdmi_firmware:2.3.206
Magewell » Ultra Encode Hdmi Plus Firmware » Version: 2.3.206

cpe:2.3:o:magewell:ultra_encode_hdmi_plus_firmware:2.3.206
Magewell » Ultra Encode Sdi Firmware » Version: 2.3.206

cpe:2.3:o:magewell:ultra_encode_sdi_firmware:2.3.206
Magewell » Ultra Encode Sdi Plus Firmware » Version: 2.3.206

cpe:2.3:o:magewell:ultra_encode_sdi_plus_firmware:2.3.206

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-63953

Products

Pricing

Contact Us