Insecure Cookie Flags Vulnerability in Digisol DG-GR6821AC Router_CVE-2025-53757

8.7 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Description

This vulnerability exists in Digisol DG-GR6821AC Router due to misconfiguration of both Secure and HttpOnly flags on session cookies associated with the router web interface. A remote attacker could exploit this vulnerability by capturing the session cookies transmitted over an unsecure HTTP connection.

Successful exploitation of this vulnerability could allow the attacker to obtain sensitive information from the targeted device.

Basic Information

ID CVE-2025-53757

Source CERT-In

Published Jul 16, 2025 at 11:25

Modified Jul 16, 2025 at 18:50

Affected Product

Vendor Digisol

Product XPON ONU Wi-Fi Router (DG-GR6821AC)

Version V3.2.XX

Affected Versions Digisol XPON ONU Wi-Fi Router (DG-GR6821AC) V3.2.XX

CWE Classification

CWE-614 CWE-1004

References

www.cert-in.org.in /s2cMainServlet

{
    "lastseen": "",
    "description": "This vulnerability exists in Digisol DG-GR6821AC Router due to misconfiguration of both Secure and HttpOnly flags on session cookies associated with the router web interface. A remote attacker could exploit this vulnerability by capturing the session cookies transmitted over an unsecure HTTP connection. \n\nSuccessful exploitation of this vulnerability could allow the attacker to obtain sensitive information from the targeted device.",
    "published": "2025-07-16T11:25:05.468Z",
    "modified": "2025-07-16T18:50:46.637Z",
    "type": "cve",
    "title": "Insecure Cookie Flags Vulnerability in Digisol DG-GR6821AC Router",
    "source": "CERT-In",
    "references": "https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES01&VLCODE=CIVN-2025-0147",
    "id": "CVE-2025-53757",
    "bulletinFamily": "",
    "cwe": [
        "CWE-614",
        "CWE-1004"
    ],
    "cvelist": null,
    "sourceData": "Digisol XPON ONU Wi-Fi Router (DG-GR6821AC) V3.2.XX",
    "sourceHref": "",
    "cvss": {
        "score": 8.7,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "XPON ONU Wi-Fi Router (DG-GR6821AC)",
    "version": "V3.2.XX",
    "vendor": "Digisol",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}