CVE-2025-47419 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Cleartext Transmission of Sensitive Information vulnerability in Crestron Automate VX allows Sniffing Network Traffic. The device allows Web UI and API access…
Critical CVSS: 10.0

CVE-2025-47419

Cleartext Transmission of Sensitive Information vulnerability in Crestron Automate VX allows Sniffing Network Traffic.

The device allows Web UI and API access over non-secure network ports which exposes sensitive information such as user passwords.


This issue affects Automate VX: from 5.6.8161.21536 through 6.4.0.49.
Vendor
-
Product
-
CWE
CWE-319
Yayın Tarihi
2025-05-06 21:16:20
Güncelleme
2025-05-07 14:13:20
Source Identifier
25b0b659-c4b4-483f-aecb-067757d23ef3
KEV Date Added
-

Kategoriler

CWE-319 CRITICAL 2025

Referanslar

https://security.crestron.com/ https://www.crestron.com/Software-Firmware/Software/Automate-VX-Software/6-4-1-8 https://www.crestron.com/release_notes/automate_vx_6.4.1.8_release_notes.pdf