ГлавнаяУязвимости → CVE-2025-52601
7.8высокая

CVE-2025-52601

Описание

Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems (ICS) and OT/IoT security, has discovered a vulnerability in Device Manager that a hardcoded encryption key for sensitive information. An attacker can use key to decrypt sensitive information. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer's report for details and workarounds.

Затрагиваемое ПО
Hanwhavision Xno-8082r firmwareHanwhavision Xno-8082rHanwhavision Xnv-8082r firmwareHanwhavision Xnv-8082rHanwhavision Xnd-8082rf firmwareHanwhavision Xnd-8082rfHanwhavision Xnd-8082rv firmwareHanwhavision Xnd-8082rvHanwhavision Xnb-8002 firmwareHanwhavision Xnb-8002Hanwhavision Xno-9082rz firmwareHanwhavision Xno-9082rzHanwhavision Xnv-9082r firmwareHanwhavision Xnv-9082rHanwhavision Xnd-9082rf firmwareHanwhavision Xnd-9082rfHanwhavision Xnd-9082rv firmwareHanwhavision Xnd-9082rvHanwhavision Xnb-9002 firmwareHanwhavision Xnb-9002Hanwhavision Xnf-9010rv firmwareHanwhavision Xnf-9010rvHanwhavision Xnf-9010rs firmwareHanwhavision Xnf-9010rsHanwhavision Xnf-9010rvm firmware
CVSS
Балл7.8 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://www.hanwhavision.com/wp-content/uploads/2025/12/Camera-Vulnerability-ReportCVE-2025-5259852601-8075.pdf