CVE-2025-5124

Name of the Vulnerable Software and Affected Versions Sony SNC-M1, SNC-M3, SNC-RZ25N, SNC-RZ30N, SNC-DS10, SNC-CS3N and SNC-RX570N versions up to 1.30

Description A critical vulnerability has been found in the Administrative Interface of the affected Sony cameras, allowing for the use of default credentials. This issue can be exploited remotely, but the complexity of the attack is considered high and the exploitability is difficult. The vendor has confirmed the existence of the vulnerability and recommends changing the initial passwords. A 'Hardening Guide' has been published to inform customers of the recommendation to change their initial passwords.

Recommendations For Sony SNC-M1, SNC-M3, SNC-RZ25N, SNC-RZ30N, SNC-DS10, SNC-CS3N and SNC-RX570N versions up to 1.30, it is recommended to change the configuration settings, specifically the initial passwords, to prevent the use of default credentials.