CVE-2025-66255
BaseFortify
Publication date: 2025-11-26
Last updated on: 2025-12-03
Assigner: Gridware
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| dbbroadcast | mozart_next_3000_firmware | * |
| dbbroadcast | mozart_next_3000 | * |
| dbbroadcast | mozart_next_3500_firmware | * |
| dbbroadcast | mozart_next_3500 | * |
| dbbroadcast | mozart_next_50_firmware | * |
| dbbroadcast | mozart_next_50 | * |
| dbbroadcast | mozart_next_500_firmware | * |
| dbbroadcast | mozart_next_500 | * |
| dbbroadcast | mozart_next_6000_firmware | * |
| dbbroadcast | mozart_next_6000 | * |
| dbbroadcast | mozart_next_7000_firmware | * |
| dbbroadcast | mozart_next_7000 | * |
| dbbroadcast | mozart_next_100_firmware | * |
| dbbroadcast | mozart_next_100 | * |
| dbbroadcast | mozart_next_1000_firmware | * |
| dbbroadcast | mozart_next_1000 | * |
| dbbroadcast | mozart_next_2000_firmware | * |
| dbbroadcast | mozart_next_2000 | * |
| dbbroadcast | mozart_next_30_firmware | * |
| dbbroadcast | mozart_next_30 | * |
| dbbroadcast | mozart_next_300_firmware | * |
| dbbroadcast | mozart_next_300 | * |
| dbbroadcast | mozart_dds_next_30_firmware | * |
| dbbroadcast | mozart_dds_next_30 | * |
| dbbroadcast | mozart_dds_next_50_firmware | * |
| dbbroadcast | mozart_dds_next_50 | * |
| dbbroadcast | mozart_dds_next_100_firmware | * |
| dbbroadcast | mozart_dds_next_100 | * |
| dbbroadcast | mozart_dds_next_300_firmware | * |
| dbbroadcast | mozart_dds_next_300 | * |
| dbbroadcast | mozart_dds_next_500_firmware | * |
| dbbroadcast | mozart_dds_next_500 | * |
| dbbroadcast | mozart_dds_next_1000_firmware | * |
| dbbroadcast | mozart_dds_next_1000 | * |
| dbbroadcast | mozart_dds_next_2000_firmware | * |
| dbbroadcast | mozart_dds_next_2000 | * |
| dbbroadcast | mozart_dds_next_3000_firmware | * |
| dbbroadcast | mozart_dds_next_3000 | * |
| dbbroadcast | mozart_dds_next_3500_firmware | * |
| dbbroadcast | mozart_dds_next_3500 | * |
| dbbroadcast | mozart_dds_next_6000_firmware | * |
| dbbroadcast | mozart_dds_next_6000 | * |
| dbbroadcast | mozart_dds_next_7000_firmware | * |
| dbbroadcast | mozart_dds_next_7000 | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-434 | The product allows the upload or transfer of dangerous file types that are automatically processed within its environment. |
| CWE-345 | The product does not sufficiently verify the origin or authenticity of data, in a way that causes it to accept invalid data. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is an unauthenticated arbitrary file upload issue in the firmware upgrade endpoint (upgrade_contents.php) of DB Electronica Telecomunicazioni S.p.A. Mozart FM Transmitter devices. The endpoint does not validate file headers, cryptographic signatures, or enforce the required .tgz format, allowing attackers to upload malicious firmware packages. This can lead to arbitrary file uploads and remote code execution on the affected devices.
How can this vulnerability impact me? :
An attacker can exploit this vulnerability to upload malicious firmware without authentication, potentially leading to remote code execution on the affected device. This can result in full compromise of the device, unauthorized control, data manipulation, or disruption of service.