CVE-2025-13399

Name of the Vulnerable Software and Affected Versions VX800v version 1.0

Description A flaw exists in the application layer encryption of the web interface, allowing a nearby attacker to compromise the weak AES key and decrypt intercepted traffic. Exploitation requires network proximity and does not require authentication. Successful exploitation could lead to a significant impact on the confidentiality, integrity, and availability of transmitted data. The affected API endpoint is not specified. The vulnerable variable is not specified. The vulnerable function is not specified.

Recommendations Update to a newer version that contains a fix for this vulnerability.