PT-2025-9567 · Idrive · I-Drive

Geochen

Published

2025-03-03

Updated

2025-03-04

CVE-2025-1882

CVSS v3.1

7.0

High

Vector

AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions i-Drive versions i11 and i12 up to 20250227

Description A critical issue affects some unknown functionality of the Device Setting Handler component, leading to improper access control for the register interface. The attack must be performed within the local network and has a high complexity, making exploitation difficult.

Recommendations For i-Drive i11 and i12 up to 20250227, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-1262CWE-284

Related Identifiers

CVE-2025-1882

Affected Products

I-Drive

PT-2025-9567 · Idrive · I-Drive

CVE-2025-1882

Weakness Enumeration

Related Identifiers

Affected Products

References · 10