Improper validation of integrity check value in IR Control Hub - CVE-2025-1073
Published: May 23, 2025
Vulnerability identifier: #VU109697
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2025-1073
CWE-ID: CWE-354
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vendor: Panasonic
Affected software:
IR Control Hub
IR Control Hub
Detailed vulnerability description
The vulnerability allows a local attacker to compromise the target system.
The vulnerability exists due to improper validation of integrity check value. An attacker with physical access can load unauthorized firmware.
How to mitigate CVE-2025-1073
Install updates from vendor's website.