CVE-2025-49164

Name of the Vulnerable Software and Affected Versions Arris VIP1113 devices with KreaTV SDK through 2025-05-30

Description The issue concerns a firmware decryption key exposure. The key is cd1c2d78f2cba1f73ca7e697b4a485f49a8a7d0c8b0fdc9f51ced50f2530668a.

Recommendations For Arris VIP1113 devices with KreaTV SDK through 2025-05-30, consider restricting access to the firmware until a patch or update is available that addresses the exposed decryption key. As a temporary workaround, avoid using the exposed key for any decryption processes. At the moment, there is no information about a newer version that contains a fix for this vulnerability.