GCVE - cpe:2.3:a:cognex:in-sight_8000_series:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:cognex:in-sight_8000_series:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Cognex (`761477c1-8f4b-58b7-b554-28c4146d76ac`)
Product	In Sight 8000 Series (`5b06970e-86d6-5d0f-8711-cc4e160f11b1`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-54860`	vulnerable	2026-06-08 07:33:13.493629	Cognex In-Sight Explorer and In-Sight Camera Firmware Improper Restriction of Excessive Authentication Attempts HIGH (7.7) Cognex In-Sight Explorer and In-Sight Camera Firmware expose a telnet-based service on port 23 in order to allow management operations on the device such as firmware upgrades and device reboot requiring an authentication. A wrong management of login failures of the service allows a denial-of-service attack, leaving the telnet service into an unreachable state. Published: 2025-09-18T21:20:20.243Z Updated: 2025-09-19T13:15:40.179Z Open on db.gcve.eu Reference links https://www.cisa.gov/news-events/ics-advisories/icsa-25-261-06	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-54818`	vulnerable	2026-06-08 07:33:13.270277	Cognex In-Sight Explorer and In-Sight Camera Firmware Cleartext Transmission of Sensitive Information HIGH (8) Cognex In-Sight Explorer and In-Sight Camera Firmware expose a proprietary protocol on TCP port 1069 to perform management operations such as modifying system properties. The user management functionality handles sensitive data such as registered usernames and passwords over an unencrypted channel, allowing an adjacent attacker to intercept valid credentials to gain access to the device. Published: 2025-09-18T21:26:45.354Z Updated: 2025-09-19T13:12:06.509Z Open on db.gcve.eu Reference links https://www.cisa.gov/news-events/ics-advisories/icsa-25-261-06	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-54810`	vulnerable	2026-06-08 07:33:13.261213	Cognex In-Sight Explorer and In-Sight Camera Firmware Authentication Bypass by Capture-replay HIGH (8) Cognex In-Sight Explorer and In-Sight Camera Firmware expose a proprietary protocol on TCP port 1069 to perform management operations such as modifying system properties. The user management functionality handles sensitive data such as registered usernames and passwords over an unencrypted channel, allowing an adjacent attacker to intercept valid credentials to gain access to the device. Published: 2025-09-18T21:28:19.297Z Updated: 2025-09-19T13:11:33.376Z Open on db.gcve.eu Reference links https://www.cisa.gov/news-events/ics-advisories/icsa-25-261-06	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-54754`	vulnerable	2026-06-08 07:33:13.159649	Cognex In-Sight Explorer and In-Sight Camera Firmware Use of Hard-coded Password HIGH (8) An attacker with adjacent access, without authentication, can exploit this vulnerability to retrieve a hard-coded password embedded in publicly available software. This password can then be used to decrypt sensitive network traffic, affecting the Cognex device. Published: 2025-09-18T21:06:15.053Z Updated: 2025-09-19T13:04:14.180Z Open on db.gcve.eu Reference links https://www.cisa.gov/news-events/ics-advisories/icsa-25-261-06	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-54497`	vulnerable	2026-06-08 07:33:12.671759	Cognex In-Sight Explorer and In-Sight Camera Firmware Incorrect Permission Assignment for Critical Resource HIGH (8.1) Cognex In-Sight Explorer and In-Sight Camera Firmware expose a telnet-based service on port 23 to allow management operations such as firmware upgrades and device reboots, which require authentication. A user with protected privileges can successfully invoke the SetSerialPort functionality to modify relevant device properties (such as serial interface settings), contradicting the security model proposed in the user manual. Published: 2025-09-18T21:24:05.023Z Updated: 2025-09-19T13:12:37.793Z Open on db.gcve.eu Reference links https://www.cisa.gov/news-events/ics-advisories/icsa-25-261-06	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-53969`	vulnerable	2026-06-08 07:31:16.070455	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-53947`	vulnerable	2026-06-08 07:31:15.976987	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-52873`	vulnerable	2026-06-08 07:31:13.129434	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-47698`	vulnerable	2026-06-08 07:27:14.743779	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.