CVE-2025-11543
Improper Integrity Check Validation in Sharp Projectors Enables Firmware Tampering
Publication date: 2025-12-22
Last updated on: 2025-12-22
Assigner: NEC Corporation
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| sharp | display_solutions | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-354 | The product does not validate or incorrectly validates the integrity check values or "checksums" of a message. This may prevent it from detecting if the data has been modified or corrupted in transmission. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is an Improper Validation of Integrity Check Value in Sharp Display Solutions projectors, which allows an attacker to create and run unauthorized firmware on the affected devices. [1]
How can this vulnerability impact me? :
An attacker exploiting this vulnerability can run unauthorized firmware on the projector, potentially leading to full compromise of the device, unauthorized control, and execution of malicious code. [1]
What immediate steps should I take to mitigate this vulnerability?
The recommended immediate mitigation is to use the affected Sharp projectors only within a secure intranet protected by a firewall and to avoid connecting them to the Internet. This helps prevent unauthorized access and exploitation of the vulnerability. [1]