CVE-2025-61976
CVE-2025-61976
In short
The CHOCO TEI WATCHER mini device fails to properly handle unusual network requests sent to its video download feature, allowing a remote attacker to freeze or crash the system without needing any authentication.
Technical detail
CWE-754 vulnerability in the Video Download interface lacks proper validation of exceptional conditions in request handling. A remote unauthenticated attacker can send a specially crafted request that causes improper exception handling, resulting in denial of service via system unresponsiveness.
Summary generated and translated by AI from the official description.
CHOCO TEI WATCHER mini (IB-MCT001) contains an issue with improper check for unusual or exceptional conditions. If a remote attacker sends a specially crafted request to the Video Download interface, the system may become unresponsive.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Affected products
Inaba Denki Sangyo Co., Ltd. · CHOCO TEI WATCHER mini (IB-MCT001)Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →