PTZOptics and possibly other ValueHD-based pan-tilt-zoom cameras use default, shared credentials for the administrative web interface.
総合評価: CVE-2025-35452 は悪用リスクが高い(70.4/100)。CVSS 深刻度は重大。悪用される可能性が高い(EPSS 0.79%、51 パーセンタイル) 根拠: 公開エクスプロイトが 1 件参照されています(Exploit-DB)。 推奨対応: 公開エクスプロイトが確認されています。影響範囲の確認、緩和策の適用、パッチ適用を優先してください。
リスクは変動します。再評価に基づき、本ページの表示内容を更新しています。
| EDB-ID | ソース | 種別 | 公開 | リンク |
|---|---|---|---|---|
| — | nvd_ref | exploit_tag | Exploit-DB ↗ |
EPSS は日次で悪用されやすさの相対度合いを推定します。パーセンタイルは採点済み CVE の中での相対位置(高いほど相対的に深刻)を示します。
| # | 日付 | 旧 EPSS スコア | 新 EPSS スコア | Δ(新 − 旧) |
|---|---|---|---|---|
| 1 | 2026-06-15 | 0.16% | 0.79% | +0.63% |
| 2 | 2026-04-01 | 0.06% | 0.16% | +0.10% |
| 3 | 2025-12-24 | — | 0.06% | — |
EPSS の全履歴 (全 8 件)
この CVE の CVSS 指標。
| ベーススコア | バージョン | 深刻度 | ベクトル | 悪用しやすさ | 影響 | スコアの出典 |
|---|---|---|---|---|---|---|
| 9.2 | 4.0 | CRITICAL |
|
— | — | 9119a7d8-5eab-497f-8521-727c672e3725 |
| 9.8 | 3.1 | CRITICAL |
|
3.9 | 5.9 | 9119a7d8-5eab-497f-8521-727c672e3725 |
| ベンダー | 製品 | バージョン | 生の CPE |
|---|---|---|---|
| ptzoptics | pt12x-sdi-xx-g2_firmware | — | cpe:2.3:o:ptzoptics:pt12x-sdi-xx-g2_firmware:-:*:*:*:*:*:*:* |
| ptzoptics | pt12x-ndi-xx_firmware | — | cpe:2.3:o:ptzoptics:pt12x-ndi-xx_firmware:-:*:*:*:*:*:*:* |
| ptzoptics | pt12x-usb-xx-g2_firmware | — | cpe:2.3:o:ptzoptics:pt12x-usb-xx-g2_firmware:-:*:*:*:*:*:*:* |
| ptzoptics | pt20x-sdi-xx-g2_firmware | — | cpe:2.3:o:ptzoptics:pt20x-sdi-xx-g2_firmware:-:*:*:*:*:*:*:* |
| ptzoptics | t20x-ndi-xx_firmware | — | cpe:2.3:o:ptzoptics:t20x-ndi-xx_firmware:-:*:*:*:*:*:*:* |
| ptzoptics | pt20x-usb-xx-g2_firmware | — | cpe:2.3:o:ptzoptics:pt20x-usb-xx-g2_firmware:-:*:*:*:*:*:*:* |
| ptzoptics | pt30x-sdi-xx-g2_firmware | — | cpe:2.3:o:ptzoptics:pt30x-sdi-xx-g2_firmware:-:*:*:*:*:*:*:* |
| ptzoptics | pt30x-ndi-xx_firmware | — | cpe:2.3:o:ptzoptics:pt30x-ndi-xx_firmware:-:*:*:*:*:*:*:* |
| ptzoptics | pt12x-zcam_firmware | — | cpe:2.3:o:ptzoptics:pt12x-zcam_firmware:-:*:*:*:*:*:*:* |
| ptzoptics | pt20x-zcam_firmware | — | cpe:2.3:o:ptzoptics:pt20x-zcam_firmware:-:*:*:*:*:*:*:* |
| ptzoptics | ptvl-zcam_firmware | — | cpe:2.3:o:ptzoptics:ptvl-zcam_firmware:-:*:*:*:*:*:*:* |
| ptzoptics | pteptz-zcam-g2_firmware | — | cpe:2.3:o:ptzoptics:pteptz-zcam-g2_firmware:-:*:*:*:*:*:*:* |
| ptzoptics | pteptz-ndi-zcam-g2 | — | cpe:2.3:o:ptzoptics:pteptz-ndi-zcam-g2:-:*:*:*:*:*:*:* |
| ptzoptics | pt12x-4k-xx-g3_firmware | <= 0.0.58 | cpe:2.3:o:ptzoptics:pt12x-4k-xx-g3_firmware:*:*:*:*:*:*:*:* |
| ptzoptics | pt20x-4k-xx-g3_firmware | <= 0.0.85 | cpe:2.3:o:ptzoptics:pt20x-4k-xx-g3_firmware:*:*:*:*:*:*:*:* |
| ptzoptics | pt30x-4k-xx-g3_firmware | <= 2.0.64 | cpe:2.3:o:ptzoptics:pt30x-4k-xx-g3_firmware:*:*:*:*:*:*:*:* |
| ptzoptics | pt12x-link-4k-xx_firmware | <= 0.0.63 | cpe:2.3:o:ptzoptics:pt12x-link-4k-xx_firmware:*:*:*:*:*:*:*:* |
| ptzoptics | pt20x-link-4k-xx_firmware | <= 0.0.89 | cpe:2.3:o:ptzoptics:pt20x-link-4k-xx_firmware:*:*:*:*:*:*:*:* |
| ptzoptics | pt30x-link-4k-xx_firmware | <= 2.0.71 | cpe:2.3:o:ptzoptics:pt30x-link-4k-xx_firmware:*:*:*:*:*:*:*:* |
| ptzoptics | pt12x-se-xx-g3_firmware | <= 9.1.43 | cpe:2.3:o:ptzoptics:pt12x-se-xx-g3_firmware:*:*:*:*:*:*:*:* |
| ptzoptics | pt20x-se-xx-g3_firmware | <= 9.1.32 | cpe:2.3:o:ptzoptics:pt20x-se-xx-g3_firmware:*:*:*:*:*:*:*:* |
| ptzoptics | pt30x-se-xx-g3_firmware | <= 9.1.33 | cpe:2.3:o:ptzoptics:pt30x-se-xx-g3_firmware:*:*:*:*:*:*:*:* |
| ptzoptics | pt-studiopro_firmware | <= 9.0.41 | cpe:2.3:o:ptzoptics:pt-studiopro_firmware:*:*:*:*:*:*:*:* |
| ptzoptics | vl_fixed_camera_firmware | <= 7.2.94 | cpe:2.3:o:ptzoptics:vl_fixed_camera_firmware:*:*:*:*:*:*:*:* |
| ptzoptics | ndi_fixed_camera_firmware | <= 7.2.94 | cpe:2.3:o:ptzoptics:ndi_fixed_camera_firmware:*:*:*:*:*:*:*:* |
| multicam-systems | mcamii_ptz_firmware | — | cpe:2.3:o:multicam-systems:mcamii_ptz_firmware:*:*:*:*:*:*:*:* |
| smtav | ba30s_firmware | — | cpe:2.3:o:smtav:ba30s_firmware:*:*:*:*:*:*:*:* |
| smtav | ba20s_firmware | — | cpe:2.3:o:smtav:ba20s_firmware:*:*:*:*:*:*:*:* |
| smtav | bv20s_firmware | — | cpe:2.3:o:smtav:bv20s_firmware:*:*:*:*:*:*:*:* |
| smtav | bx30s_firmware | — | cpe:2.3:o:smtav:bx30s_firmware:*:*:*:*:*:*:*:* |
| smtav | bx20n_firmware | — | cpe:2.3:o:smtav:bx20n_firmware:*:*:*:*:*:*:*:* |
| smtav | bx20uhd-n_firmware | — | cpe:2.3:o:smtav:bx20uhd-n_firmware:*:*:*:*:*:*:*:* |
| smtav | bx20uhd_firmware | — | cpe:2.3:o:smtav:bx20uhd_firmware:*:*:*:*:*:*:*:* |
| smtav | ba30-n_firmware | — | cpe:2.3:o:smtav:ba30-n_firmware:*:*:*:*:*:*:*:* |
| smtav | ba20-n_firmware | — | cpe:2.3:o:smtav:ba20-n_firmware:*:*:*:*:*:*:*:* |
| smtav | ba12-n_firmware | — | cpe:2.3:o:smtav:ba12-n_firmware:*:*:*:*:*:*:*:* |
| smtav | hd17h-n_firmware | — | cpe:2.3:o:smtav:hd17h-n_firmware:*:*:*:*:*:*:*:* |
| smtav | bx20s-sh_firmware | — | cpe:2.3:o:smtav:bx20s-sh_firmware:*:*:*:*:*:*:*:* |
| smtav | hd17h_firmware | — | cpe:2.3:o:smtav:hd17h_firmware:*:*:*:*:*:*:*:* |
| smtav | bv30s_firmware | — | cpe:2.3:o:smtav:bv30s_firmware:*:*:*:*:*:*:*:* |
| smtav | ba12s_firmware | — | cpe:2.3:o:smtav:ba12s_firmware:*:*:*:*:*:*:*:* |
| valuehd | vx90_firmware | — | cpe:2.3:o:valuehd:vx90_firmware:*:*:*:*:*:*:*:* |
| valuehd | vx720l_firmware | — | cpe:2.3:o:valuehd:vx720l_firmware:*:*:*:*:*:*:*:* |
| valuehd | vx752ag_firmware | — | cpe:2.3:o:valuehd:vx752ag_firmware:*:*:*:*:*:*:*:* |
| valuehd | vx752a_firmware | — | cpe:2.3:o:valuehd:vx752a_firmware:*:*:*:*:*:*:*:* |
| valuehd | vx751ba_firmware | — | cpe:2.3:o:valuehd:vx751ba_firmware:*:*:*:*:*:*:*:* |
| valuehd | vx630al_firmware | — | cpe:2.3:o:valuehd:vx630al_firmware:*:*:*:*:*:*:*:* |
| valuehd | vx61asl_firmware | — | cpe:2.3:o:valuehd:vx61asl_firmware:*:*:*:*:*:*:*:* |
| valuehd | vx61basl_firmware | — | cpe:2.3:o:valuehd:vx61basl_firmware:*:*:*:*:*:*:*:* |
| valuehd | vx60asl_firmware | — | cpe:2.3:o:valuehd:vx60asl_firmware:*:*:*:*:*:*:*:* |
| valuehd | vx61al_firmware | — | cpe:2.3:o:valuehd:vx61al_firmware:*:*:*:*:*:*:*:* |
| valuehd | vx60al_firmware | — | cpe:2.3:o:valuehd:vx60al_firmware:*:*:*:*:*:*:*:* |
| valuehd | vx701ra_firmware | — | cpe:2.3:o:valuehd:vx701ra_firmware:*:*:*:*:*:*:*:* |
| valuehd | vx701ta_firmware | — | cpe:2.3:o:valuehd:vx701ta_firmware:*:*:*:*:*:*:*:* |
| valuehd | vx800i2_firmware | — | cpe:2.3:o:valuehd:vx800i2_firmware:*:*:*:*:*:*:*:* |
| valuehd | v61w_firmware | — | cpe:2.3:o:valuehd:v61w_firmware:*:*:*:*:*:*:*:* |
| valuehd | v63xl_firmware | — | cpe:2.3:o:valuehd:v63xl_firmware:*:*:*:*:*:*:*:* |
| valuehd | v60xl_firmware | — | cpe:2.3:o:valuehd:v60xl_firmware:*:*:*:*:*:*:*:* |
| valuehd | vx70uvs_firmware | — | cpe:2.3:o:valuehd:vx70uvs_firmware:*:*:*:*:*:*:*:* |
| valuehd | vx71uvs_firmware | — | cpe:2.3:o:valuehd:vx71uvs_firmware:*:*:*:*:*:*:*:* |
| valuehd | v71uvs_firmware | — | cpe:2.3:o:valuehd:v71uvs_firmware:*:*:*:*:*:*:*:* |
| URL | タグ |
|---|---|
| https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2025/icsa-25-162-10.json | Patch |
| https://www.cisa.gov/news-events/ics-advisories/icsa-25-162-10 | Third Party Advisory US Government Resource |
| https://www.cve.org/CVERecord?id=CVE-2025-35452 | Third Party Advisory |
| https://www.greynoise.io/blog/greynoise-intelligence-discovers-zero-day-vulnerabilities-in-live-streaming-cameras-with-the-help-of-ai | Third Party Advisory |
| https://www.labs.greynoise.io/grimoire/2024-10-31-sift-0-day-rce/ | Exploit Third Party Advisory |