CVE-2025-12049

EPSS 0.07%
Veröffentlicht 22.12.2025 05:16:19
Zuletzt bearbeitet 15.01.2026 20:01:12
Quelle psirt-info@cyber.jp.nec.com
CVE-Watchlists
Login
Unerledigt
Login

Missing Authentication for Critical Function vulnerability in Sharp Display Solutions Media Player MP-01 All Verisons allows a attacker may access to the web interface of the affected product without authentication and change settings or perform other operations, and deliver content from the authoring software to the affected product without authentication.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Sharp ≫ Mp-01 Firmware

Sharp ≫ Mp-01 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.07%	0.224

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
psirt-info@cyber.jp.nec.com	9.2	0	0	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CWE-306 Missing Authentication for Critical Function

The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.

https://sharp-displays.jp.sharp/global/support/info/MP01-CVE-2025-12049.html

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2025-12049

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-12049

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-12049

EUVD