PT-2025-43652 · Blu-Ic2+1 · Blu-Ic2+1

Alexi Bitsios

Published

2025-10-24

Updated

2025-10-25

CVE-2025-12176

CVSS v4.0

Critical

Vector

AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

Name of the Vulnerable Software and Affected Versions BLU-IC2 versions through 1.19.5 BLU-IC4 versions through 1.19.5

Description Undocumented administrative accounts were being created to facilitate access for applications. These accounts offer a means of network compromise. The issue affects BLU-IC2 and BLU-IC4 devices.

Recommendations Update BLU-IC2 to a version later than 1.19.5. Update BLU-IC4 to a version later than 1.19.5.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-1242

Related Identifiers

CVE-2025-12176

Affected Products

Blu-Ic2

Blu-Ic4

PT-2025-43652 · Blu-Ic2+1 · Blu-Ic2+1

CVE-2025-12176

Weakness Enumeration

Related Identifiers

Affected Products

References · 9