CVE-2025-62777 HIGH

CVE-2025-62777

Vendor Planex Communications Inc.
Product MZK-DP300N
Weakness CWE-798 · Hardcoded credentials
Published October 28, 2025
Last update October 28, 2025

CVSS base score

8.8/10
Attack vector Adjacent
Attack complexity Low
Privileges required None
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

Use of Hard-Coded Credentials issue exists in MZK-DP300N version 1.07 and earlier, which may allow an attacker within the local network to log in to the affected device via Telnet and execute arbitrary commands.

Key dates

02Disclosure timeline

October 28, 2025 CVE published
October 28, 2025 Record updated