Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-62497

Cross-site request forgery vulnerability exists in SNC-CX600W versions prior to Ver.2.8.0. If a user accesses a specially crafted webpage while logged in, unintended operations may be performed.

Published

2025-11-25T05:16:11.990

Last Modified

2025-12-01T15:38:42.637

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 6.5 (MEDIUM)

Weaknesses

Type: Secondary
CWE-352

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	sony	snc-cx600w_firmware	< 2.8.0	Yes
Hardware	sony	snc-cx600w	-	No

References

https://jvn.jp/en/jp/JVN75140384/ Third Party Advisory ([email protected])
https://www.sony.com/electronics/support/ip-cameras-fixed/snc-cx600w Product ([email protected])