CVE-2025-2765 – CarlinKit CPC200-CCPA Hard-Coded Credentials Authentication Bypass

April 23, 2025

CVE ID : CVE-2025-2765

Published : April 23, 2025, 5:16 p.m. | 1 hour, 42 minutes ago

Description : CarlinKit CPC200-CCPA Wireless Hotspot Hard-Coded Credentials Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of CarlinKit CPC200-CCPA devices. Authentication is not required to exploit this vulnerability.

The specific flaw exists within the configuration of the wireless hotspot. The issue results from the use of hard-coded credentials. An attacker can leverage this vulnerability to bypass authentication on the system. Was ZDI-CAN-24349.

Severity: 7.6 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-2769 – Bdrive NetDrive OpenSSL Privilege Escalation Vulnerability

Next Article CVE-2025-2762 – CarlinKit CPC200-CCPA Root of Trust Failure Privilege Escalation Vulnerability

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

Microsoft Edge may be getting a redesigned New Tab Page powered by Copilot

Best gaming laptops for playing The Elder Scrolls 4: Oblivion Remastered in 2025

Windows 3.1 is now available for the Game Boy Color… kind of

My favorite File Explorer replacement just got better

Laravel’s AsHtmlString Cast for Elegant HTML Attribute Management

Laravel’s AsHtmlString Cast for Elegant HTML Attribute Management

Safely Retry API calls in Laravel

As an SEO beginner, how can I get traffic for the website I’ve created?

COSMIC Desktop Alpha 7 Brings More New Features

COSMIC Desktop Alpha 7 Brings More New Features

Microsoft Edge may be getting a redesigned New Tab Page powered by Copilot

Best gaming laptops for playing The Elder Scrolls 4: Oblivion Remastered in 2025

CVE-2025-2765 – CarlinKit CPC200-CCPA Hard-Coded Credentials Authentication Bypass

April 2025 Patch Tuesday: One Zero-Day and 11 Critical Vulnerabilities Among 121 CVEs

DslogdRAT Malware Deployed in Ivanti Connect Secure Zero-Day Campaign

Underwriting Reimagined: Generative AI as the Architect of Smarter Insurance

I can’t stop using Helldivers 2’s best new weapon, and it just got even better in a new update patch

How to build a multi-agent orchestrator using Flink and Kafka

Why Manual Data Entry Is Killing Estate Planning Productivity

7 features in Windows 11 I wish were enabled by default

Bartender Is an Opinionated Way to Authenticate Users Using Laravel Socialite

Talk to your slide deck using multimodal foundation models on Amazon Bedrock â€“ Part 3

GROKFAST: A Machine Learning Approach that Accelerates Grokking by Amplifying Slow Gradients

CVE-2025-2765 – CarlinKit CPC200-CCPA Hard-Coded Credentials Authentication Bypass

Related Posts