PT-2025-25183 · Unknown · Perfect Harmony Gh180
Published
2025-06-11
·
Updated
2025-06-11
·
CVE-2024-35295
CVSS v3.1
6.1
Medium
| Vector | AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Perfect Harmony GH180 versions V8.0 through V8.3.3
Description
A security issue has been identified where the maintenance connection of affected devices does not protect access to the device's control unit configuration. This could allow an attacker with physical access to the maintenance connection's port to make arbitrary configuration changes.
Recommendations
For Perfect Harmony GH180 versions V8.0 through V8.3.3, restrict physical access to the maintenance connection's port to minimize the risk of exploitation. Consider implementing additional security measures to protect the device's control unit configuration until a fix is available.
Fix
Missing Authentication
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Perfect Harmony Gh180