CVE 8.7 HIGH

CVE-2025-62777_CVE-2025-62777

October 28, 2025 invoker category_cve

8.7 / 10

HIGH

CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

Use of Hard-Coded Credentials issue exists in MZK-DP300N version 1.07 and earlier, which may allow an attacker within the local network to log in to the affected device via Telnet and execute arbitrary commands.

AI Analysis

Use of Hard-Coded Credentials vulnerability in MZK-DP300N devices, allowing unauthorized access via Telnet.

Basic Information

ID CVE-2025-62777

Source jpcert

Published Oct 28, 2025 at 04:53

Affected Product

Vendor PLANEX COMMUNICATIONS INC.

Product MZK-DP300N

Version 1.07 and earlier

Affected Versions PLANEX COMMUNICATIONS INC. MZK-DP300N 1.07 and earlier

CWE Classification

CWE-798

AI Assessment

AI Score 8.7 / 10

AI Severity High

Vendor PLANEX COMMUNICATIONS INC.

Product MZK-DP300N

Version 1.07 and earlier

References

{
    "lastseen": "",
    "description": "Use of Hard-Coded Credentials issue exists in MZK-DP300N version 1.07 and earlier, which may allow an attacker within the local network to log in to the affected device via Telnet and execute arbitrary commands.",
    "published": "2025-10-28T04:53:00.768Z",
    "modified": "2025-10-28T04:53:00.768Z",
    "type": "cve",
    "title": "CVE-2025-62777",
    "source": "jpcert",
    "references": "https://www.planex.co.jp/products/mzk-dp300n/\nhttps://jvn.jp/en/jp/JVN00021602/",
    "id": "CVE-2025-62777",
    "bulletinFamily": "",
    "cwe": [
        "CWE-798"
    ],
    "cvelist": null,
    "sourceData": "PLANEX COMMUNICATIONS INC. MZK-DP300N 1.07 and earlier",
    "sourceHref": "",
    "cvss": {
        "score": 8.7,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "MZK-DP300N",
    "version": "1.07 and earlier",
    "vendor": "PLANEX COMMUNICATIONS INC.",
    "ai_description": "Use of Hard-Coded Credentials vulnerability in MZK-DP300N devices, allowing unauthorized access via Telnet.",
    "ai_severity": "High",
    "ai_vendor": "PLANEX COMMUNICATIONS INC.",
    "ai_product": "MZK-DP300N",
    "ai_version": "1.07 and earlier",
    "ai_score": 8.7
}

💭 Join the Security Discussion ❌ Cancel Reply