Security Advisory

CVE-2019-25259

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-07 23:09:57

Last updated 2026-01-08 19:26:27

Assigner VulnCheck

State PUBLISHED

Description

Leica Geosystems GR10/GR25/GR30/GR50 GNSS 4.30.063 contains a cross-site request forgery vulnerability that allows attackers to perform administrative actions without request validation. Attackers can trick logged-in users into executing unauthorized actions by crafting malicious web pages that submit requests to the application.

← Browse all CVEs View on cve.org ↗