CVE-2025-64075 | THREATINT

Description

A path traversal vulnerability in the check_token function of Shenzhen Zhibotong Electronics ZBT WE2001 23.09.27 allows remote attackers to bypass authentication and perform administrative actions by supplying a crafted session cookie value.

PUBLISHED Reserved 2025-10-27 | Published 2026-02-11 | Updated 2026-02-11 | Assigner mitre

References

www.zbtwifi.com

neutsec.io/advisories/cve-2025-64075

cve.org (CVE-2025-64075)

nvd.nist.gov (CVE-2025-64075)

Download JSON