CVE-2025-1283

Summary

The Dingtian DT-R0 Series is vulnerable to an exploit that allows attackers to bypass login requirements by directly navigating to the main page.

Affected Software

VendorProductVersion RangeStatus
DingtianDT-R002V3.1.3044Aaffected
DingtianDT-R008V3.1.1759Aaffected
DingtianDT-R016V3.1.2776Aaffected
DingtianDT-R032V3.1.3826Aaffected

Weaknesses

  • CWE-288: CWE-288

Workarounds

Dingtian has not responded to requests to work with CISA to mitigate this vulnerability, thus no mitigation is available at this time. Users of affected versions of Dingtian DT-R002 are invited to contact Dingtian customer support https://www.dingtian-tech.com/en_us/aboutus.html for additional information.

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References