CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-67015

Incorrect access control in Comtech EF Data CDM-625 / CDM-625A Advanced Satellite Modem with firmware v2.5.1 allows attackers to change the Administrator password and escalate privileges via sending a crafted POST request to /Forms/admin_access_1.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 12.6%

CVSS Severity

CVSS v3 Score 7.5

References

https://github.com/shiky8/my--cve-vulnerability-research/tree/main/CVE-2025-67015%20_%20Comtech%20EF%20Data%20CDM-625%20_%20CDM-625A%20Advanced%20_%20Broken%20Access%20Control
https://www.comtechefdata.com/

Products affected by CVE-2025-67015

Comtech » Cdm-625 » Version: N/A

cpe:2.3:h:comtech:cdm-625:-
Comtech » Cdm-625a » Version: N/A

cpe:2.3:h:comtech:cdm-625a:-
Comtech » Cdm-625 Firmware » Version: 2.5.1

cpe:2.3:o:comtech:cdm-625_firmware:2.5.1
Comtech » Cdm-625a Firmware » Version: 2.5.1

cpe:2.3:o:comtech:cdm-625a_firmware:2.5.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-67015

Products

Pricing

Contact Us