CVE Catalog

CVE-2025-13954

Critical
Published: Translated: NVD NIST

Summary

In EZCast Pro II versions before 1.17478.177, hard-coded cryptographic keys in the admin UI allow attackers to bypass authorization checks and gain full access to the admin UI.

Risk Assessment

Attackers can gain unauthorized access to sensitive administrative functions, potentially leading to serious security breaches within the organization.

Recommendation

It is recommended to update EZCast Pro II to version 1.17478.177 or later to eliminate hard-coded cryptographic keys and secure the admin UI.

Original NVD description (English source)

Hard-coded cryptographic keys in Admin UI of EZCast Pro II before version 1.17478.177 allows attackers to bypass authorization checks and gain full access to the admin UI

Vulnerability data from NVD (NIST) · CISA KEV · EPSS