#VU116034 Authentication Bypass by Capture-replay in Cognex Corporation products - CVE-2025-54810
Published: September 23, 2025
Vulnerability identifier: #VU116034
Vulnerability risk: Medium
CVSSv4.0: CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green
CVE-ID: CVE-2025-54810
CWE-ID: CWE-294
Exploitation vector: Adjecent network
Exploit availability:
No public exploit available
Vulnerable software:
In-Sight Explorer
In-Sight 2000 series
In-Sight 7000 series
In-Sight 8000 series
In-Sight 9000 series
In-Sight Explorer
In-Sight 2000 series
In-Sight 7000 series
In-Sight 8000 series
In-Sight 9000 series
Software vendor:
Cognex Corporation
Cognex Corporation
Description
The vulnerability allows a remote attacker to bypass authentication process.
The vulnerability exists due to authentication bypass by capture-replay. A remote attacker on the local network can capture the encrypted password, perform the replay attack and gain unauthorized access on the target device.
Remediation
Cybersecurity Help is currently unaware of any official solution to address this vulnerability.