Description

PTZOptics and possibly other ValueHD-based pan-tilt-zoom cameras use default, shared credentials for the administrative web interface.

INFO

Published Date :

2025-09-05T17:49:02.755Z

Last Modified :

2025-09-08T18:07:29.985Z

Source :

cisa-cg
AFFECTED PRODUCTS

The following products are affected by CVE-2025-35452 vulnerability.

Vendors Products
Multicam-systems
  • Mcamii Ptz
  • Mcamii Ptz Firmware
Ptzoptics
  • Ndi Fixed Camera
  • Ndi Fixed Camera Firmware
  • Pt-studiopro
  • Pt-studiopro Firmware
  • Pt12x-4k-xx-g3
  • Pt12x-4k-xx-g3 Firmware
  • Pt12x-link-4k-xx
  • Pt12x-link-4k-xx Firmware
  • Pt12x-ndi-xx
  • Pt12x-ndi-xx Firmware
  • Pt12x-sdi-xx-g2
  • Pt12x-sdi-xx-g2 Firmware
  • Pt12x-se-xx-g3
  • Pt12x-se-xx-g3 Firmware
  • Pt12x-usb-xx-g2
  • Pt12x-usb-xx-g2 Firmware
  • Pt12x-zcam
  • Pt12x-zcam Firmware
  • Pt20x-4k-xx-g3
  • Pt20x-4k-xx-g3 Firmware
  • Pt20x-link-4k-xx
  • Pt20x-link-4k-xx Firmware
  • Pt20x-sdi-xx-g2
  • Pt20x-sdi-xx-g2 Firmware
  • Pt20x-se-xx-g3
  • Pt20x-se-xx-g3 Firmware
  • Pt20x-usb-xx-g2
  • Pt20x-usb-xx-g2 Firmware
  • Pt20x-zcam
  • Pt20x-zcam Firmware
  • Pt30x-4k-xx-g3
  • Pt30x-4k-xx-g3 Firmware
  • Pt30x-link-4k-xx
  • Pt30x-link-4k-xx Firmware
  • Pt30x-ndi-xx
  • Pt30x-ndi-xx Firmware
  • Pt30x-sdi-xx-g2
  • Pt30x-sdi-xx-g2 Firmware
  • Pt30x-se-xx-g3
  • Pt30x-se-xx-g3 Firmware
  • Pteptz-ndi-zcam-g2
  • Pteptz-zcam-g2
  • Pteptz-zcam-g2 Firmware
  • Ptvl-zcam
  • Ptvl-zcam Firmware
  • T20x-ndi-xx
  • T20x-ndi-xx Firmware
  • Vl Fixed Camera
  • Vl Fixed Camera Firmware
Smtav
  • Ba12-n
  • Ba12-n Firmware
  • Ba12s
  • Ba12s Firmware
  • Ba20-n
  • Ba20-n Firmware
  • Ba20s
  • Ba20s Firmware
  • Ba30-n
  • Ba30-n Firmware
  • Ba30s
  • Ba30s Firmware
  • Bv20s
  • Bv20s Firmware
  • Bv30s
  • Bv30s Firmware
  • Bx20n
  • Bx20n Firmware
  • Bx20s-sh
  • Bx20s-sh Firmware
  • Bx20uhd
  • Bx20uhd-n
  • Bx20uhd-n Firmware
  • Bx20uhd Firmware
  • Bx30s
  • Bx30s Firmware
  • Hd17h
  • Hd17h-n
  • Hd17h-n Firmware
  • Hd17h Firmware
Valuehd
  • V60xl
  • V60xl Firmware
  • V61w
  • V61w Firmware
  • V63xl
  • V63xl Firmware
  • V71uvs
  • V71uvs Firmware
  • Vx60al
  • Vx60al Firmware
  • Vx60asl
  • Vx60asl Firmware
  • Vx61al
  • Vx61al Firmware
  • Vx61asl
  • Vx61asl Firmware
  • Vx61basl
  • Vx61basl Firmware
  • Vx630al
  • Vx630al Firmware
  • Vx701ra
  • Vx701ra Firmware
  • Vx701ta
  • Vx701ta Firmware
  • Vx70uvs
  • Vx70uvs Firmware
  • Vx71uvs
  • Vx71uvs Firmware
  • Vx720l
  • Vx720l Firmware
  • Vx751ba
  • Vx751ba Firmware
  • Vx752a
  • Vx752a Firmware
  • Vx752ag
  • Vx752ag Firmware
  • Vx800i2
  • Vx800i2 Firmware
  • Vx90
  • Vx90 Firmware
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-35452.

URL Resource
https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2025/icsa-25-162-10.json cve-icon cve-icon
https://www.cisa.gov/news-events/ics-advisories/icsa-25-162-10 cve-icon cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-35452 cve-icon cve-icon
https://www.greynoise.io/blog/greynoise-intelligence-discovers-zero-day-vulnerabilities-in-live-streaming-cameras-with-the-help-of-ai cve-icon cve-icon
https://www.labs.greynoise.io/grimoire/2024-10-31-sift-0-day-rce/ cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
VS Confidentiality
VS Integrity
VS Availability
SS Confidentiality
SS Integrity
SS Availability
Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact