CVE-2025-25061 Information

Description

Unintended proxy or intermediary (‘Confused Deputy’) issue exists in HMI ViewJet C-more series and HMI GC-A2 series which may allow a remote unauthenticated attacker to use the product as an intermediary for FTP bounce attack.

Reference

https://jvn.jp/en/jp/JVN17260367/ https://www.electronics.jtekt.co.jp/en/topics/202503207269/ https://www.electronics.jtekt.co.jp/en/topics/202503207271/