CVE Catalog

CVE-2025-13955

Critical
Published: Translated: NVD NIST

Summary

The Access Point functionality in EZCast Pro II before version 1.17478.177 has a predictable default Wi-Fi password, allowing attackers within Wi-Fi range to gain access to the device by calculating the default password from observable device identifiers.

Risk Assessment

Attackers can gain unauthorized access to the device, potentially compromising organizational data and networks.

Recommendation

It is recommended to update EZCast Pro II to version 1.17478.177 or later to mitigate this vulnerability and to use strong, unique Wi-Fi passwords.

Original NVD description (English source)

Predictable default Wi-Fi Password in Access Point functionality in EZCast Pro II before version 1.17478.177 allows attackers in Wi-Fi range to gain access to the dongle by calculating the default password from observable device identifiers

Vulnerability data from NVD (NIST) · CISA KEV · EPSS