CVE-2025-27594

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined.

Description: The issue concerns the use of an unencrypted, proprietary protocol for communication, which allows an attacker to intercept the authentication hash. This hash can then be used to log into the device using a pass-the-hash attack. The protocol is used for transmitting configuration data and performing device authentication.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.