exploitDog

CVE-2025-12049

Опубликовано: 22 дек. 2025

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

Missing Authentication for Critical Function vulnerability in Sharp Display Solutions Media Player MP-01 All Verisons allows a attacker may access to the web interface of the affected product without authentication and change settings or perform other operations, and deliver content from the authoring software to the affected product without authentication.

Ссылки

https://sharp-displays.jp.sharp/global/support/info/MP01-CVE-2025-12049.html
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:sharp:mp-01_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sharp:mp-01:-:*:*:*:*:*:*:*

EPSS

Процентиль: 24%

0.00079

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-306

Связанные уязвимости

GHSA-c3mr-fcrj-6g2w

CVSS3: 9.8

github

около 2 месяцев назад

Missing Authentication for Critical Function vulnerability in Sharp Display Solutions Media Player MP-01 All Verisons allows a attacker may access to the web interface of the affected product without authentication and change settings or perform other operations, and deliver content from the authoring software to the affected product without authentication.

EPSS

Процентиль: 24%

0.00079

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-306