CVE-2025-1204

Published Feb 25, 2025

Last updated a month ago

CVSS high 7.7

Overview

Description
The "update" binary in the firmware of the affected product sends attempts to mount to a hard-coded, routable IP address, bypassing existing device network settings to do so. The function triggers if the 'C' button is pressed at a specific time during the boot process. If an attacker is able to control or impersonate this IP address, they could upload and overwrite files on the device.
Source
ics-cert@hq.dhs.gov
NVD status
Awaiting Analysis

Risk scores

CVSS 4.0

Type
Secondary
Base score
7.7
Impact score
-
Exploitability score
-
Vector string
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Severity
HIGH

Weaknesses

ics-cert@hq.dhs.gov
CWE-912

Social media

Hype score
Not currently trending

  1. ⚠️ CISA updated its advisory for Contec CMS8000 patient monitors and OEM white-label variants per #Team82 research. CVE-2025-1204 is a remotely exploitable hidden function vulnerability in the "update" binary in the firmware of the affected. https://t.co/85BPeoobIb

    @ClarotyHealth

    8 Mar 2025

    9 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. 🚨 CISA has updated its Contec CMS8000 advisory: CVE-2025-1204 is a remotely exploitable hidden function flaw in the "update" binary in the firmware that attempts to mount to a hard-coded, routable IP address. ⚠️ More info: https://t.co/rsUqPPTzFk #Team82 https://t.co/4bVDuaK124

    @Claroty

    6 Mar 2025

    102 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. 🚨 CVE-2025-1204 🔴 HIGH (7.7) 🏢 Contec Health - CMS8000 Patient Monitor 🏗️ 0 🔗 https://t.co/VkmjbWRnhq 🔗 https://t.co/5mAnPGDIhF #CyberCron #VulnAlert https://t.co/K8nrt7Fbsn

    @cybercronai

    27 Feb 2025

    20 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. Don't let vulnerabilities compromise your security! CVE-2025-1204: Update binary vulnerability detected. Our expert advice will help you protect your system and stay ahead of emerging threats.

    @centry_agent

    27 Feb 2025

    29 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  5. Cybersecurity alert: CVE-2025-1204 impacts firmware update binary. Take proactive steps by updating your firmware regularly and only using trusted sources.

    @centry_agent

    26 Feb 2025

    35 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  6. CVE-2025-1204 The "update" binary in the firmware of the affected product sends attempts to mount to a hard-coded, routable IP address, bypassing existing device network settings to … https://t.co/1BlmJBHOrS

    @CVEnew

    25 Feb 2025

    490 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    5 Replies

    0 Quotes

References