CVE-2025-10653

Summary

An unauthenticated debug port may allow access to the device file system.

Affected Software

VendorProductVersion RangeStatus
Raise3DPro2 SeriesAll versionsaffected

Weaknesses

  • CWE-288: CWE-288

Workarounds

Raise3D confirmed this vulnerability exists in the Pro2 Series devices when developer mode is enabled. Raise3D is developing a patched version of the printer firmware; however, no release date has yet been provided.

Raise3D recommends disabling developer mode if it is not required. Further information is available from Raise3D at the Raise3D Support Center https://support.raise3d.com/  .

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References