CVE-2025-9495 | Viessmann Vitogate 2.1.3.0/3.0 Web Interface client-side enforcement of server-side security

A vulnerability was found in Viessmann Vitogate 2.1.3.0/3.0. It has been declared as critical. Affected by this issue is some unknown functionality of the component Web Interface. The manipulation results in client-side enforcement of server-side security.

This vulnerability is known as CVE-2025-9495. Access to the local network is required for this attack. No exploit is available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More