Vulnerabilities

CVE-2025-46408

by Fred · 15/09/2025

An issue was discovered in the methods push.lite.avtech.com.AvtechLib.GetHttpsResponse and push.lite.avtech.com.Push_HttpService.getNewHttpClient in AVTECH EagleEyes 2.0.0. The methods set ALLOW_ALL_HOSTNAME_VERIFIER, bypassing domain validation.

More information : https://github.com/shinyColumn/CVE-2025-46408

Similar

Tags: Cybersecurity Alert