#VU116035 Client-Side Enforcement of Server-Side Security in Cognex Corporation products - CVE-2025-53969
Published: September 23, 2025
Vulnerability identifier: #VU116035
Vulnerability risk: Medium
CVSSv4.0: CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green
CVE-ID: CVE-2025-53969
CWE-ID: CWE-602
Exploitation vector: Adjecent network
Exploit availability:
No public exploit available
Vulnerable software:
In-Sight Explorer
In-Sight 2000 series
In-Sight 7000 series
In-Sight 8000 series
In-Sight 9000 series
In-Sight Explorer
In-Sight 2000 series
In-Sight 7000 series
In-Sight 8000 series
In-Sight 9000 series
Software vendor:
Cognex Corporation
Cognex Corporation
Description
The vulnerability allows a remote attacker to compromise the target system.
The vulnerability exists due to insufficient client-side validation. A remote user on the local network can perform management operations such as changing network settings or modifying users' access to the device.
Remediation
Cybersecurity Help is currently unaware of any official solution to address this vulnerability.