CNNVD-202509-2858 Information
CNNVD ID
CNNVD-202509-2858
Related CVE
- CNNVD Published: 2025-09-18
Description (Chinese)
Cognex In-Sight Explorer是美国Cognex公司的一款具有调试和编程其智能相机系列软件功能的工具。 Cognex多款产品存在安全漏洞,该漏洞源于固件升级过程中存在用户特权凭据,可能导致未经验证的相邻攻击者获取凭据。以下产品受到影响:In-Sight 2000 series、In-Sight 7000 series、In-Sight 8000 series、In-Sight 9000 series和In-Sight Explorer。
Description (English)
Cognex In-Sight Explorer is a U.S. Cognex software tool with the capability of debugging and programming its smart camera series. There is a safety loophole in the Cognex multi-products, which stems from the existence of proof of user privileges in the process of upgrading the solids, which may lead to the acquisition of evidence by uncertified neighbouring attackers. The following products were affected: In-Sight 2000 series, In-Sight 7000 series, In-Sight 8000 series, In-Sight 9000 series and In-Sight Explorer.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Cohesive Networks
Published
2025-09-18
Last Modified
2026-02-24
References
https://www.cisa.gov/news-events/ics-advisories/icsa-25-261-06