Home

Description

Optigo Networks Visual BACnet Capture Tool and Optigo Visual Networks Capture Tool version 3.1.2rc11 contain an exposed web management service that could allow an attacker to bypass authentication measures and gain controls over utilities within the products.

PUBLISHED Reserved 2025-03-06 | Published 2025-03-13 | Updated 2025-03-13 | Assigner icscert




CRITICAL: 9.3CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Problem types

CWE-288 Authentication Bypass Using an Alternate Path or Channel

Product status

Default status
unaffected

3.1.2rc11
affected

Default status
unaffected

3.1.2rc11
affected

Credits

Tomer Goldschmidt of Claroty Team82 finder

References

www.cisa.gov/news-events/ics-advisories/icsa-25-070-02 government-resource

cve.org (CVE-2025-2080)

nvd.nist.gov (CVE-2025-2080)

Download JSON