← Back

Streamermax Mk Ii Firmware

streamermax_mk_ii_firmware

Vendor: Axeltechnology • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2025-63223
1Axeltechnology
1Streamermax Mk Ii Firmware
Jan 15, 2026
Nov 19, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
The Axel Technology StreamerMAX MK II devices (firmware versions 0.8.5 to 1.0.3) are vulnerable to Broken Access Control due to missing authentication on the /cgi-bin/gstFcgi.fcgi endpoint. Unauthenticated remote attacke...Show more
The Axel Technology StreamerMAX MK II devices (firmware versions 0.8.5 to 1.0.3) are vulnerable to Broken Access Control due to missing authentication on the /cgi-bin/gstFcgi.fcgi endpoint. Unauthenticated remote attackers can list user accounts, create new administrative users, delete users, and modify system settings, leading to full compromise of the device.Show less