CVE-2025-62619
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2025-62619
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Missing authentication in the KVM key download endpoint could allow an unauthenticated attacker with knowledge of the exposed URL to retrieve sensitive keys, potentially leading to loss of confidentiality.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
关键功能的认证机制缺失
Source: NVD (National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2025-62619
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2025-62619
请登录查看更多情报信息。
Same Patch Batch · AMD · 2026-05-14 · 3 CVEs total
| CVE-2025-62625 | KVM密钥下载组件权限管理不当漏洞 | |
| CVE-2025-62628 | AMD部分工具OpenSSL初始化漏洞致远程代码执行 |
IV. Related Vulnerabilities
Same weakness: CWE-306
- CVE-2026-45248
Hedera Guardian Authentication Bypass Information Disclosure - CVE-2026-44592
Gradient: Unauthenticated worker on /proto → arbitrary NAR w - CVE-2026-42283
DevSpace UI Server WebSocket CheckOrigin does not validate s - CVE-2026-0247
Prisma Access Agent Endpoint DLP: Authorization Bypass Vulne - CVE-2026-5029
RCE in Code Runner MCP Server
V. Comments for CVE-2025-62619
No comments yet