PT-2025-9565 · Idrive · I-Drive
Geochen
·
Published
2025-03-03
·
Updated
2025-03-04
·
CVE-2025-1880
CVSS v3.1
4.3
Medium
| Vector | AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
i-Drive versions i11 and i12 up to 20250227
Description
A problematic issue was found in the Device Pairing component, allowing for authentication bypass by primary weakness. The complexity of an attack is rather high, and the exploitability is difficult. It is possible to launch the attack on the physical device.
Recommendations
For i-Drive versions i11 and i12 up to 20250227, at the moment, there is no information about a newer version that contains a fix for this vulnerability.
Improper Authentication
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
I-Drive