CVE-2025-63206

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

19/11/2025

Last modified:

19/11/2025

Description

An authentication bypass issue was discovered in Dasan Switch DS2924 web based interface, firmware versions 1.01.18 and 1.02.00, allowing attackers to gain escalated privileges via storing crafted cookies in the web browser.

Impact

References to Advisories, Solutions, and Tools

http://dasansmc.com/
https://github.com/shiky8/my--cve-vulnerability-research/tree/main/CVE-2025-63206_Dasan%20Switch%20DS2924%20Authentication%20Bypass