cvedb.io
CVE-2025-35451
CRITICAL · CVSS 9.8
EPSS exploitation probability: 0%
Published 2025-09-05T18:15:41.900 · Last modified 2026-06-17T09:14:17.950

Summary

PTZOptics and possibly other ValueHD-based pan-tilt-zoom cameras use hard-coded, default administrative credentials. The passwords can readily be cracked. Many cameras have SSH or telnet listening on all interfaces. The passwords cannot be changed by the user, nor can the SSH or telnet service be disabled by the user.

Affected products

ptzoptics — pt12x-sdi-xx-g2_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when ptzoptics ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.