CVE-2025-67015 in Comtech EF Data CDM-625 / CDM-625A

CyberDefender 3 mins0
  • Title: Incorrect access control in Comtech EF Data CDM-625 / CDM-625A Advanced Satellite Modem
  • Affected Product: Comtech EF Data CDM-625 and CDM-625A satellite modems running firmware version 2.5.1
  • Published: December 26, 2025

Vulnerability Description

This flaw stems from improper access control in the device’s web management interface. An attacker can send a crafted HTTP POST request to the endpoint

/Forms/admin_access_1

to change the Administrator password and gain administrative privileges without valid authentication. This effectively allows complete takeover of administration functions on the modem.

Severity

  • CVSS v3.1:7.5 (High)
    • Attack Vector: Network
    • Attack Complexity: Low
    • Privileges Required: None
    • User Interaction: None
    • Confidentiality Impact: High
    • Integrity / Availability Impact: None

There is no official CVSS v4 score published yet in the NVD listing at the time of writing.

Root Cause

The underlying issue is classified under CWE-284: Improper Access Control, meaning the device does not adequately restrict sensitive functions to authorized users.

Impact

  • An unauthenticated attacker with network access to the modem’s interface could:
    • Reset or change the administrator password
    • Obtain admin-level control
    • Potentially manipulate configuration or disrupt operations
  • This risk is especially relevant in environments where these modems are exposed to untrusted networks.

Mitigation & Recommendations

  1. Apply vendor updates as soon as Comtech releases a firmware patch addressing this issue.
  2. Restrict network access to the modem’s management interface (e.g., isolate it behind a VPN or trusted network segments).
  3. Implement strict access controls (ACLs) and firewall rules to limit who can reach the affected endpoint.
  4. Monitor for suspicious requests targeting the /Forms/admin_access_1 endpoint and other admin paths.
  5. Consider physical or logical segmentation of management interfaces from general traffic.
    https://github.com/shiky8/my–cve-vulnerability-research/tree/main/CVE-2025-67015%20_%20Comtech%20EF%20Data%20CDM-625%20_%20CDM-625A%20Advanced%20_%20Broken%20Access%20Control

CyberDefender