CVE-2025-26570

Summary

CVE-2025-26570 is a Cross-Site Request Forgery (CSRF) vulnerability affecting the uamv Glance application. This issue enables an attacker to manipulate the vulnerable application by making unauthorized requests on behalf of a user, potentially leading to data theft or unintended actions. The CSRF vulnerability exists in all versions of uamv Glance from n/a through 4.9, putting a significant number of users at risk. Successful exploitation of this vulnerability can lead to serious consequences, including unauthorized modifications to user accounts and unintended data transfers. It is highly recommended that users immediately apply the available patch or upgrade to a version that is not affected by this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.