PT-2025-50938 · Cleverdisplay · Cleverdisplay Blueone
Dennis Kussendrager
+1
·
Published
2025-12-12
·
Updated
2025-12-12
·
CVE-2025-36755
CVSS v4.0
2.4
Low
| Vector | AV:P/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:N/R:X/V:D/RE:L/U:Green |
Name of the Vulnerable Software and Affected Versions
CleverDisplay BlueOne (affected versions not specified)
Description
The CleverDisplay BlueOne hardware player allows access to the BIOS setup interface by connecting a USB keyboard and pressing ESC during boot after bypassing the device’s physical enclosure. This exposes internal system information, potentially increasing the attack surface. The device is designed with its USB interfaces physically enclosed and inaccessible under normal operating conditions. The issue does not allow integrity or availability compromise under standard or tested configurations.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Unsafe Debug Access Level
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Cleverdisplay Blueone