CVE-2025-63208 | THREATINT

Description

An issue was discovered in bridgetech VB288 Objective QoE Content Extractor, firmware version 5.6.0-8, allowing attackers to gain sensitive information such as administrator passwords via the /probe/core/setup/passwd endpoint.

PUBLISHED Reserved 2025-10-27 | Published 2025-11-19 | Updated 2025-11-20 | Assigner mitre

References

bridgetech.tv/

github.com/...-63208_bridgetech VB288 Information Disclosure

cve.org (CVE-2025-63208)

nvd.nist.gov (CVE-2025-63208)

Download JSON