CNNVD-202509-2846 Information
CNNVD ID
CNNVD-202509-2846
Related CVE
- CNNVD Published: 2025-09-18
Description (Chinese)
Cognex In-Sight Explorer和Cognex In-Sight Camera Firmware都是美国Cognex公司的产品。Cognex In-Sight Explorer是一款具有调试和编程其智能相机系列软件功能的工具。Cognex In-Sight Camera Firmware是一系列智能相机的固件。 Cognex多款产品存在安全漏洞,该漏洞源于通过TCP端口1069上的专有协议处理敏感数据时未加密,可能导致相邻攻击者拦截有效凭据并获取设备访问权限。以下产品受到影响:In-Sight 2000 series、In-Sight 7000 series、In-Sight 8000 series、In-Sight 9000 series和In-Sight Explorer。
Description (English)
Cognex In-Sight Explorer and Cognex In-Sight Camera Firmware are products of Cognex, United States. Cognex In-Sight Explorer is a tool with the functionality of debugging and programming its smart camera series. Cognex In-Sight Camera Fairmware is a solid set of smart cameras. There is a safety loophole in the Cognex multi-products, which stems from the unencrypted handling of sensitive data through the proprietary agreement on TCP port 1069, which may lead to the interception of effective certificates and the acquisition of equipment access by adjacent attackers. The following products were affected: In-Sight 2000 series, In-Sight 7000 series, In-Sight 8000 series, In-Sight 9000 series and In-Sight Explorer.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Cohesive Networks
Published
2025-09-18
Last Modified
2026-02-24
References
https://www.cisa.gov/news-events/ics-advisories/icsa-25-261-06 https://access.redhat.com/security/cve/cve-2025-54810