CVE-2025-13954
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-12-10
Last updated on: 2025-12-10
Assigner: Switzerland Government Common Vulnerability Program
Description
Description
Hard-coded cryptographic keys in Admin UI of EZCast Pro II version 1.17478.146Β allows attackers to bypass authorization checks and gain full access to the admin UI
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| ezcast | pro_ii | 1.17478.146 |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-798 | The product contains hard-coded credentials, such as a password or cryptographic key. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability involves hard-coded cryptographic keys in the Admin UI of EZCast Pro II version 1.17478.146. Because of these hard-coded keys, attackers can bypass authorization checks and gain full access to the admin UI.
How can this vulnerability impact me? :
An attacker exploiting this vulnerability can bypass authorization and gain full administrative access to the EZCast Pro II device's admin UI. This could lead to unauthorized control, data exposure, or manipulation of the device's settings and functions.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70