CVE-2025-54497
Cognex In-Sight Explorer and In-Sight Camera Firmware expose
a telnet-based service
on port 23 to allow management operations such as firmware upgrades and
device reboots, which require authentication. A user with protected
privileges can successfully invoke the SetSerialPort functionality to
modify relevant device properties (such as serial interface settings),
contradicting the security model proposed in the user manual.
a telnet-based service
on port 23 to allow management operations such as firmware upgrades and
device reboots, which require authentication. A user with protected
privileges can successfully invoke the SetSerialPort functionality to
modify relevant device properties (such as serial interface settings),
contradicting the security model proposed in the user manual.
Vendor
-
Product
-
CWE
Yayın Tarihi
2025-09-18 22:15:46
Güncelleme
2025-09-19 16:00:27
Source Identifier
ics-cert@hq.dhs.gov
KEV Date Added
-