CVE-2025-41653

High

An unauthenticated remote attacker can exploit a denial-of-service vulnerability in the device's web server functionality by sending a…

CERTVDE·CWE-410·Published 2025-05-27

CVSS

7.5

EPSS

0.00

KEV

Exploits

cve.orgen

254 chars

An unauthenticated remote attacker can exploit a denial-of-service vulnerability in the device's web server functionality by sending a specially crafted HTTP request with a malicious header, potentially causing the server to crash or become unresponsive.

NVDen

254 chars

NVDes

299 chars

Un atacante remoto no autenticado puede explotar una vulnerabilidad de denegación de servicio en la funcionalidad del servidor web del dispositivo enviando una solicitud HTTP especialmente manipulada con un encabezado malicioso, lo que podría provocar que el servidor se bloquee o deje de responder.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	cve.org	7.5	—	—	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
3.1	Secondary	NVD	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H