PT-2025-50309 · Unknown · Ezcast Pro Ii
Published
2025-12-10
·
Updated
2026-05-28
·
CVE-2025-13954
CVSS v4.0
9.3
Critical
| Vector | AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:H/SA:N/AU:Y/RE:L |
Name of the Vulnerable Software and Affected Versions
EZCast Pro II version 1.17478.146
Description
The Admin UI contains hard-coded cryptographic keys. This allows attackers to bypass authorization checks and gain full access to the admin UI.
Recommendations
Update to a newer version that does not contain hard-coded cryptographic keys.
Fix
Using Hardcoded Credentials
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ezcast Pro Ii