QwikSec

Security Database

CVE

CWE

Training

CVE-2025-64385

Published: Oct 31, 2025

Modified: Nov 3, 2025

PUBLISHED

Description

The equipment initially can be configured using the manufacturer's application, by Wi-Fi, by the web server or with the manufacturer’s software. Using the manufacturer's software, the device can be configured via UDP. Analyzing this communication, it has been observed that any aspect of the initial configuration can be changed by means of the device's MAC without the need for authentication.

Vendor	Product	Versions
Circutor	TCPRS1plus	affected `1.0.14`

Weaknesses (CWE)

References

https://cds.thalesgroup.com/es/s21sec

https://circutor.com/productos/iot-industrial-y-automatizacion/conversores-y-pasarelas/product/D80010./

product

https://www.hackrtu.com/blog/cg-0day-en-003/

technical-description

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.