CNNVD-202509-2847 Information
CNNVD ID
CNNVD-202509-2847
Related CVE
- CNNVD Published: 2025-09-18
Description (Chinese)
Cognex In-Sight Explorer和Cognex In-Sight Camera Firmware都是美国Cognex公司的产品。Cognex In-Sight Explorer是一款具有调试和编程其智能相机系列软件功能的工具。Cognex In-Sight Camera Firmware是一系列智能相机的固件。 Cognex多款产品存在安全漏洞,该漏洞源于具有保护权限的用户可调用SetSerialPort功能修改设备属性,违反安全模型。以下产品受到影响:In-Sight 2000 series、In-Sight 7000 series、In-Sight 8000 series、In-Sight 9000 series和In-Sight Explorer。
Description (English)
Cognex In-Sight Explorer and Cognex In-Sight Camera Firmware are products of Cognex, United States. Cognex In-Sight Explorer is a tool with the functionality of debugging and programming its smart camera series. Cognex In-Sight Camera Fairmware is a solid set of smart cameras. There is a safety gap in the Cognex multi-products, which arises from the fact that users with protection privileges can access SetSerial Port to modify the equipment properties and violate the security model. The following products were affected: In-Sight 2000 series, In-Sight 7000 series, In-Sight 8000 series, In-Sight 9000 series and In-Sight Explorer.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Cohesive Networks
Published
2025-09-18
Last Modified
2026-02-24
References
https://www.cisa.gov/news-events/ics-advisories/icsa-25-261-06 https://access.redhat.com/security/cve/cve-2025-54497