Security Advisory

CVE-2019-25251

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-24 19:28:03

Last updated 2026-01-26 15:55:00

Assigner VulnCheck

State PUBLISHED

Description

Teradek VidiU Pro 3.0.3 contains a server-side request forgery vulnerability in the management interface that allows attackers to manipulate GET parameters url and xml_url. Attackers can exploit this flaw to bypass firewalls, initiate network enumeration, and potentially trigger external HTTP requests to arbitrary destinations.

← Browse all CVEs View on cve.org ↗