CVE-2025-47418 – Crestron Automate VX Sensitive Information Exposure

May 6, 2025

CVE ID : CVE-2025-47418

Published : May 6, 2025, 9:16 p.m. | 2 hours, 41 minutes ago

Description : Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Crestron Automate VX allows Functionality Misuse.

There is no visible indication when the system is recording and recording can be enabled remotely via a network API.
This issue affects Automate VX: from 5.6.8161.21536 through 6.4.0.49.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-47419 – Crestron Automate VX Insecure Communication Vulnerability

Next Article CVE-2025-46573 – OpenSAMLPassport-WSFed Impersonation Vulnerability

GitHub’s CEO Thomas Dohmke steps down, triggering tighter integration of company within Microsoft

bitHuman launches SDK for creating AI avatars

Designing With AI, Not Around It: Practical Advanced Techniques For Product Design Use Cases

Why Companies Are Investing in AI-Powered React.js Development Services in 2025

I found a Google Maps alternative that won’t track you or drain your battery – and it’s free

I tested this new AI podcast tool to see if it can beat NotebookLM – here’s how it did

Microsoft’s new update makes your taskbar a productivity hub – here’s how

Save $50 on the OnePlus Pad 3 plus get a free gift – here’s the deal

Laravel Global Scopes: Automatic Query Filtering

Laravel Global Scopes: Automatic Query Filtering

Building MCP Servers in PHP

Filament v4 is Stable!

I Asked OpenAI’s New Open-Source AI Model to Complete a Children’s School Test — Is It Smarter Than a 10-Year-Old?

I Asked OpenAI’s New Open-Source AI Model to Complete a Children’s School Test — Is It Smarter Than a 10-Year-Old?

Madden NFL 26 Leads This Week’s Xbox Drops—But Don’t Miss These Hidden Gems

ASUS G14 Bulked Up for 2025—Still Sexy, Just a Bit Chonkier

CVE-2025-47418 – Crestron Automate VX Sensitive Information Exposure

Update WinRAR tools now: RomCom and others exploiting zero-day vulnerability

WinRAR zero-day exploited in espionage attacks against high-value targets

Creating Scalable Apps with Modular Architecture in React Native⚙️

CVE-2025-2068 – FileZ Open Redirect Information Disclosure

CVE-2025-53075 – Samsung Open Source rLottie Path Traversal Vulnerability

Copilot ask, edit, and agent modes: What they do and when to use them

CVE-2025-40671 – AES Multimedia Gestnet SQL Injection

CVE-2015-0842 – Yubiserver SQL Injection Vulnerability

CVE-2025-2802 – WordPress LayoutBoxx Plugin Shortcode Execution Vulnerability

Veil of Vigilance: Tails 6.0’s New Frontiers in Surveillance Resistance

CVE-2025-47418 – Crestron Automate VX Sensitive Information Exposure

Related Posts