CVE-2025-13510 – Iskra iHUB and iHUB Lite has a Missing Authentication for Critical Function vulnerabilitiy

CVE ID : CVE-2025-13510

Published : Dec. 2, 2025, 7:28 p.m. | 57 minutes ago

Description : The Iskra iHUB and iHUB Lite smart metering gateway exposes its web management interface without requiring authentication, allowing unauthenticated users to access and modify critical device settings.

Severity: 9.3 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2025-13658 – Industrial Video & Control Longwatch has a Code Injection vulnerability

CVE-2025-13542 – DesignThemes LMS

CVE-2025-66459 – Lookyloo vulnerable to XSS due to unescaped error message passed to innerHTML

CVE-2025-66468 – Aimeos GrapesJS CMS extension possible stores XSS exploitable by authenticated editors