CVE-2025-1073 | THREATINT

Description

Panasonic IR Control Hub (IR Blaster) versions 1.17 and earlier may allow an attacker with physical access to load unauthorized firmware onto the device.

PUBLISHED Reserved 2025-02-06 | Published 2025-04-10 | Updated 2025-04-15 | Assigner Panasonic_Holdings_Corporation

HIGH: 7.5CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:L

Problem types

CWE-1299: Missing Protection Mechanism for Alternate Hardware Interface

Product status

Default status

unaffected

1.17 and earlier (custom)

affected

Credits

Shravan Singh finder

References

lsin.panasonic.com/release-notes

cve.org (CVE-2025-1073)

nvd.nist.gov (CVE-2025-1073)

Download JSON