PT-2025-38484 · Cognex · Cognex In-Sight Explorer+1
Diego Giubertoni
·
Published
2025-09-18
·
Updated
2025-09-19
·
CVE-2025-52873
CVSS v3.1
8.1
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Cognex In-Sight Explorer and In-Sight Camera Firmware (affected versions not specified)
Description
Cognex In-Sight Explorer and In-Sight Camera Firmware expose a telnet-based service on port 23 for management operations, including firmware upgrades and device reboots, which require authentication. A user with protected privileges can invoke the
SetSystemConfig functionality to modify device properties, such as network settings, potentially violating the intended security model.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Incorrect Permission
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Cognex In-Sight Camera Firmware
Cognex In-Sight Explorer