Question 1

What is CVE-2026-10825 — CVE-2026-10825?

Accepted Answer

A denial-of-service vulnerability exists in the WebSocket API due to insufficient validation and handling of JSON-based requests. A low-privileged authenticated attacker can send a specially crafted request that causes service disruption and may result in an unexpected device reboot.

Question 2

What is the authoritative source for CVE-2026-10825?

Accepted Answer

CVE-2026-10825 (CVE-2026-10825) is catalogued in NVD + CISA KEV + FIRST EPSS and curated for EU compliance use cases by SQUR.

EPSS	0.31% probability of exploitation · percentile 22.5% · 2026-06-18T12:00:27Z
Last modified	2026-06-16

CVE-2026-10825CVE-2026-10825

Description

Scoring