CVE-2025-12917
BaseFortify
Publication date: 2025-11-09
Last updated on: 2026-04-29
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| gztozed | zlt_t10_plus_firmware | 3.04.15 |
| gztozed | zlt_t10_plus | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-404 | The product does not release or incorrectly releases a resource before it is made available for re-use. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in the TOZED ZLT T10 T10PLUS_3.04.15 device, specifically in an unknown function within the /reqproc/proc_post file of the Reboot Handler component. It allows an attacker with access to the local network to manipulate the system in a way that causes a denial of service (DoS), making the device unavailable or unresponsive. The exploit for this vulnerability is publicly available.
How can this vulnerability impact me? :
The vulnerability can lead to a denial of service condition on the affected device, potentially disrupting its normal operation. Since the attack requires local network access, an attacker within the same network could exploit this to cause service interruptions, affecting availability and possibly impacting dependent systems or services.