CVE-2025-26408

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Feb 11, 2025

CWE ID 1191

Summary

CVE-2025-26408 is a vulnerability affecting the JTAG interface of Wattsense Bridge devices. With physical access to the PCB, an attacker can gain full access to the device, allowing them to extract information, modify, and debug the firmware. This issue poses a significant risk, as all known versions of the device are reportedly affected. Attackers may exploit this vulnerability to launch various attacks, including data theft or unauthorized device control. This weakness underscores the importance of implementing robust physical security measures to safeguard critical systems.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/3N0uQX
https://www.cve.org/CVERecord?id=CVE-2025-26408
https://nvd.nist.gov/vuln/detail/CVE-2025-26408

Back to Vulnerability Database

CVE-2025-26408

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations