CVE-2025-61235

Published: Oct 28, 2025

Modified: Oct 29, 2025

PUBLISHED

Description

An issue was discovered in Dataphone A920 v2025.07.161103. A custom packet based on public documentation can be crafted, where some fields can contain arbitrary or trivial data. Normally, such data should cause the device to reject the packet. However, due to a lack of validation, the device accepts it with no authetication and triggers the functionality instead.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/stuxve/poc-dataphone-crafted-packet

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-61235

Description

Affected Products

References