CVE-2025-32730

Summary

Use of hard-coded cryptographic key vulnerability in i-PRO Configuration Tool affects the network system for i-PRO Co., Ltd. surveillance cameras and recorders. This vulnerability allows a local authenticated attacker to use the authentication information from the last connected surveillance cameras and recorders.

Affected Software

VendorProductVersion RangeStatus
i-PRO Co., Ltd.i-PRO Configuration Toolsee the information provided by the vendoraffected

Weaknesses

  • CWE-321: Use of hard-coded cryptographic key

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References