Shodan
Vulnerabilities
Vulnerable Software
Mersive:  >> Solstice Pod Firmware  >> 5.6  Security Vulnerabilities
CVE-2025-66573
Solstice Pod API (version 5.5, 6.2) contains an unauthenticated API endpoint (`/api/config`) that exposes sensitive information such as the session key, server version, product details, and display name. Unauthorized users can extract live session information by accessing this endpoint without authentication.
CVSS Score
7.5
EPSS Score
0.001
Published
2025-12-04


Products
Pricing
Contact Us

Shodan ® - All rights reserved