CVE-2025-15548 in VX800v
Summary
by MITRE • 01/29/2026
Some VX800v v1.0 web interface endpoints transmit sensitive information over unencrypted HTTP due to missing application layer encryption, allowing a network adjacent attacker to intercept this traffic and compromise its confidentiality.
If you want to get the best quality for vulnerability data then you always have to consider VulDB.
Analysis
by VulDB Data Team • 03/09/2026
The vulnerability identified as CVE-2025-15548 affects the VX800v v1.0 web interface where sensitive data is transmitted over unencrypted HTTP connections. This represents a critical security flaw that directly violates fundamental principles of secure communications and data protection. The affected device operates with a web-based management interface that fails to implement proper encryption mechanisms, leaving all transmitted information vulnerable to interception by malicious actors within the same network segment.
This technical weakness stems from the absence of application layer encryption protocols such as TLS or SSL on the web interface endpoints. The vulnerability is categorized under CWE-319, which specifically addresses the exposure of sensitive information through improper encryption or lack of encryption. The VX800v v1.0 device transmits authentication credentials, configuration data, and potentially other sensitive operational information without adequate protection, creating a significant attack surface for network adjacent adversaries. The implementation of unencrypted HTTP communication violates industry standards and best practices established by organizations such as NIST and ISO/IEC 27001.
The operational impact of this vulnerability is substantial as it enables a network adjacent attacker to perform man-in-the-middle attacks and capture sensitive information flowing between the web interface and connected clients. This capability allows attackers to intercept authentication tokens, user credentials, and configuration details that could be used for further exploitation within the network. The vulnerability's severity is amplified by the fact that it affects the device's management interface, potentially providing attackers with administrative access to the VX800v v1.0 system. The attack vector requires only network adjacency, making it particularly dangerous in environments where network segmentation is not properly implemented.
Mitigation strategies should focus on implementing proper encryption protocols across all web interface endpoints. The most effective immediate solution involves enabling HTTPS with strong TLS versions and certificates to ensure secure communication channels. Organizations should also implement network segmentation controls and access restrictions to limit the attack surface. Additional defensive measures include monitoring for unauthorized access attempts, implementing network access control lists, and conducting regular security assessments. The vulnerability aligns with ATT&CK technique T1071.001 for application layer protocol usage, specifically targeting web protocols without proper encryption. Regular firmware updates and security patches should be implemented as part of the overall security posture to address similar vulnerabilities in the device's software stack.