CVE-2025-7577

CVE Database · CVE-2025-7577

CVE-2025-7577

· LOWDeferred

CVSS v3.1

3.7

CVSS v4.0

2.9

EPSS

0.32%

Published

Jul 14, 2025

Modified

Apr 28, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A vulnerability was found in Teledyne FLIR FB-Series O and FLIR FH-Series ID 1.3.2.16. It has been classified as problematic. This affects an unknown part. The manipulation leads to use of hard-coded password. It is possible to initiate the attack remotely. The complexity of an attack is rather high. The exploitability is told to be difficult. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

CVSS Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

Weaknesses (CWE)

CWE-255CWE-259

References (5)

https://github.com/waiwai24/0101/blob/main/CVEs/FLIR/Root_User_with_Hardcoded_Weak_Password.md

https://github.com/waiwai24/0101/blob/main/CVEs/FLIR/Root_User_with_Hardcoded_Weak_Password.md#poc

https://vuldb.com/?ctiid.316275

https://vuldb.com/?id.316275

https://vuldb.com/?submit.609550

KEV Catalog EPSS Scores Vendors All CVEs