CVE 9.2 CRITICAL

CVE-2025-12049_CVE-2025-12049

December 21, 2025 invoker category_cve

9.2 / 10

CRITICAL

CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

Missing Authentication for Critical Function vulnerability in Sharp Display Solutions Media Player MP-01 All Verisons allows a attacker may access to the web interface of the affected product without authentication and change settings or perform other operations, and deliver content from the authoring software to the affected product without authentication.

AI Analysis

Missing Authentication for Critical Function vulnerability allowing unauthorized access to the web interface and change settings

Basic Information

ID CVE-2025-12049

Source NEC

Published Dec 22, 2025 at 05:05

Affected Product

Vendor Sharp Display Solutions, Ltd.

Product Media Player MP-01

Version All versions

Affected Versions Sharp Display Solutions, Ltd. Media Player MP-01 All versions

CWE Classification

CWE-306

AI Assessment

AI Score 9.2 / 10

AI Severity Critical

Vendor Sharp Display Solutions, Ltd.

Product Media Player MP-01

Version All versions

References

sharp-displays.jp.sharp /global/support/info/MP01-CVE-2025-12049.html

{
    "lastseen": "",
    "description": "Missing Authentication for Critical Function vulnerability in Sharp Display Solutions Media Player MP-01 All Verisons allows a attacker may access to the web interface of the affected product without authentication and change settings or perform other operations, and deliver content from the authoring software to the affected product without authentication.",
    "published": "2025-12-22T05:05:25.588Z",
    "modified": "2025-12-22T05:05:25.588Z",
    "type": "cve",
    "title": "CVE-2025-12049",
    "source": "NEC",
    "references": "https://sharp-displays.jp.sharp/global/support/info/MP01-CVE-2025-12049.html",
    "id": "CVE-2025-12049",
    "bulletinFamily": "",
    "cwe": [
        "CWE-306"
    ],
    "cvelist": null,
    "sourceData": "Sharp Display Solutions, Ltd. Media Player MP-01 All versions",
    "sourceHref": "",
    "cvss": {
        "score": 9.2,
        "severity": "CRITICAL",
        "vector": "CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Media Player MP-01",
    "version": "All versions",
    "vendor": "Sharp Display Solutions, Ltd.",
    "ai_description": "Missing Authentication for Critical Function vulnerability allowing unauthorized access to the web interface and change settings",
    "ai_severity": "Critical",
    "ai_vendor": "Sharp Display Solutions, Ltd.",
    "ai_product": "Media Player MP-01",
    "ai_version": "All versions",
    "ai_score": 9.2
}

💭 Join the Security Discussion ❌ Cancel Reply