CVE-2025-66963
MEDIUMHitrontech Hi3120 Firmware - Information Disclosure
Title source: ruleDescription
An issue in Hitron HI3120 v.7.2.4.5.2b1 allows a local attacker to obtain sensitive information via the Logout option in the index.html
References (2)
Core 2
Core References
Not Applicable
http://hitron.com
Scores
CVSS v3
5.5
EPSS
0.0002
EPSS Percentile
6.4%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-200
Status
published
Products (1)
hitrontech/hi3120_firmware
7.2.4.5.2b1
Published
Dec 15, 2025
Tracked Since
Feb 18, 2026