CVE-2025-14117 | fit2cloud Halo 2.21.10 cross-site request forgery

December 5, 2025 Yanac

A vulnerability was found in fit2cloud Halo 2.21.10. It has been classified as problematic. Impacted is an unknown function. The manipulation leads to cross-site request forgery.

This vulnerability is listed as CVE-2025-14117. The attack may be initiated remotely. In addition, an exploit is available.

The vendor was contacted early about this disclosure but did not respond in any way.VulDB Recent EntriesRead More