CVE-2025-63952

{"id": "CVE-2025-63952", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.7, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 2.1}]}, "published": "2025-11-24T17:16:08.517", "references": [{"url": "https://github.com/iyadalkhatib98/My_CVES/tree/main/CVE-2025-63952", "tags": ["Exploit", "Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://www.magewell.com", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-352"}]}], "descriptions": [{"lang": "en", "value": "A Cross-Site Request Forgery (CSRF) in the /mwapi?method=add-user component of Magewell Pro Convert v1.2.213 allows attackers to arbitrarily create accounts via a crafted GET request."}], "lastModified": "2025-12-30T18:13:43.463", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:magewell:pro_convert_hdmi_4k_plus_firmware:1.2.213:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F79FF420-5C76-4415-A328-14F36A3F0580"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:magewell:pro_convert_hdmi_4k_plus:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "ADB1A789-DE46-4A78-847E-B057F1C19BFC"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:magewell:pro_convert_hdmi_plus_firmware:1.2.213:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0A482F2C-BA10-486C-B269-C54B7E40A812"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:magewell:pro_convert_hdmi_plus:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7F28BCEE-DFCA-4DA3-B230-159FF9B2E322"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:magewell:pro_convert_hdmi_tx_firmware:1.2.213:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AF735287-5754-463D-93DF-2CB50471369E"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:magewell:pro_convert_hdmi_tx:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B3D4371C-A483-4CBD-97F6-7D2A39D6D5E6"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:magewell:pro_convert_12g_sdi_4k_plus_firmware:1.2.213:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F8942E00-D02E-4C6C-BB26-3023D465DDB2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:magewell:pro_convert_12g_sdi_4k_plus:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4E95CD31-4ADF-4C08-B19C-6B7117518DB0"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:magewell:pro_convert_sdi_4k_plus_firmware:1.2.213:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C1CA819A-C9B9-4669-9EC6-73FC73C6EAAC"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:magewell:pro_convert_sdi_4k_plus:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D7133B02-9693-45A4-89ED-C50D8F35109A"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:magewell:pro_convert_sdi_plus_firmware:1.2.213:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7FB96455-7250-4B55-A0B8-1D58E9272DB6"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:magewell:pro_convert_sdi_plus:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2732B092-46DA-4B25-88BA-7B477C2AE68E"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:magewell:pro_convert_sdi_tx_firmware:1.2.213:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "75D0133C-74C7-49DA-AE0F-15340CADA7EB"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:magewell:pro_convert_sdi_tx:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "732B335F-7445-4DA0-9166-25EC0E5DF4D4"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:magewell:pro_convert_for_ndi_to_hdmi_firmware:1.2.213:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6BB7B1AD-2166-45BA-8B58-98F0505E0BB2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:magewell:pro_convert_for_ndi_to_hdmi:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1F6715AC-5191-44DF-BE9C-B043187B4769"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:magewell:pro_convert_for_ndi_to_hdmi_4k_firmware:1.2.213:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C1E88CDE-75A2-41CB-9EBC-E5467DAD4C07"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:magewell:pro_convert_for_ndi_to_hdmi_4k:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "654FDC5B-8831-4492-A6F8-6673AD213022"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:magewell:pro_convert_for_ndi_to_aio_firmware:1.2.213:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1B125F89-30E1-4B0D-9E4B-B64EEC58B07F"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:magewell:pro_convert_for_ndi_to_aio:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5857C002-7E61-461E-AF3A-FB4B2BFA0324"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:magewell:pro_convert_for_ndi_to_sdi_firmware:1.2.213:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1C478BE2-8A25-411B-9A36-5A9098509C56"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:magewell:pro_convert_for_ndi_to_sdi:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A1209578-D1FB-49DA-A03F-2A4BB864770B"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:magewell:pro_convert_aes67_firmware:1.2.213:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4E0775F1-B84A-4E87-900A-2EC84696C08C"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:magewell:pro_convert_aes67:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "31D3C847-4B08-4599-AAE6-3724B8BA62FC"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:magewell:pro_convert_audio_dx_firmware:1.2.213:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "35B4E5AE-C9CA-4A04-9791-06289AE86993"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:magewell:pro_convert_audio_dx:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "33B16C1E-9227-4883-9A02-E7C15A881B4F"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}