CVE-2025-0224

Public Exploit

Provision-ISR SH-4050A-2 server.js information disclosure

Description

A vulnerability was found in Provision-ISR SH-4050A-2, SH-4100A-2L(MM), SH-8100A-2L(MM), SH-16200A-2(1U), SH-16200A-5(1U) and NVR5-8200PX up to 20241220. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /server.js. The manipulation leads to information disclosure. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

References

Link	Tags
https://vuldb.com/?id.290203	vdb entry
https://vuldb.com/?ctiid.290203	permissions required signature
https://vuldb.com/?submit.467085	third party advisory
https://netsecfish.notion.site/Sensitive-Device-Information-Disclosure-in-Provision-ISR-DVR-1626b683e67c803881befbc730a93bf6?pvs=4	exploit

Frequently Asked Questions

What is the severity of CVE-2025-0224?: CVE-2025-0224 has been scored as a medium severity vulnerability.
How to fix CVE-2025-0224?: To fix CVE-2025-0224, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2025-0224 being actively exploited in the wild?: It is possible that CVE-2025-0224 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2025-0224?: CVE-2025-0224 affects Provision-ISR SH-4050A-2, Provision-ISR SH-4100A-2L(MM), Provision-ISR SH-8100A-2L(MM), Provision-ISR SH-16200A-2(1U), Provision-ISR SH-16200A-5(1U), Provision-ISR NVR5-8200PX.

Description

Category

CWE-200 – Exposure of Sensitive Information to an Unauthorized Actor

References

Frequently Asked Questions