CNNVD-202509-2845 Information
CNNVD ID
CNNVD-202509-2845
Related CVE
- CNNVD Published: 2025-09-18
Description (Chinese)
Cognex In-Sight Explorer和Cognex In-Sight Camera Firmware都是美国Cognex公司的产品。Cognex In-Sight Explorer是一款具有调试和编程其智能相机系列软件功能的工具。Cognex In-Sight Camera Firmware是一系列智能相机的固件。 Cognex多款产品存在安全漏洞,该漏洞源于通过TCP端口1069的专有协议处理敏感数据时未加密,可能导致相邻攻击者拦截凭据获取设备访问权限。以下产品受到影响:In-Sight 2000 series、In-Sight 7000 series、In-Sight 8000 series、In-Sight 9000 series和In-Sight Explorer。
Description (English)
Cognex In-Sight Explorer and Cognex In-Sight Camera Firmware are products of Cognex, United States. Cognex In-Sight Explorer is a tool with the functionality of debugging and programming its smart camera series. Cognex In-Sight Camera Fairmware is a solid set of smart cameras. There is a safety gap in the Cognex multi-products, which stems from the unencrypted processing of sensitive data through a proprietary agreement at TCP port 1069, which could lead to the interception of equipment access rights by adjacent attackers. The following products were affected: In-Sight 2000 series, In-Sight 7000 series, In-Sight 8000 series, In-Sight 9000 series and In-Sight Explorer.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Cohesive Networks
Published
2025-09-18
Last Modified
2026-02-24
References
https://www.cisa.gov/news-events/ics-advisories/icsa-25-261-06 https://access.redhat.com/security/cve/cve-2025-54818