Vulnerability Description
An issue was discovered in bridgetech probes VB220 IP Network Probe,VB120 Embedded IP + RF Probe, VB330 High-Capacity Probe, VB440 ST 2110 Production Analytics Probe, and NOMAD, firmware versions 6.5.0-9, allowing attackers to gain sensitive information such as administrator passwords via the /probe/core/setup/passwd endpoint. NOTE: the Supplier disagrees that 6.5.0-9 is affected, and instead reports that 5.6.0-3 and earlier are affected, and 5.6.0-4 (2020-09-21) and later are fixed.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bridgetech | Vb220 Firmware | 6.5.0-9 |
| Bridgetech | Vb220 | - |
| Bridgetech | Vb120 Firmware | 6.5.0-9 |
| Bridgetech | Vb120 | - |
| Bridgetech | Vb330 Firmware | 6.5.0-9 |
| Bridgetech | Vb330 | - |
| Bridgetech | Vb440 Firmware | 6.5.0-9 |
| Bridgetech | Vb440 | - |
| Bridgetech | Nomad Portable Firmware | 6.5.0-9 |
| Bridgetech | Nomad Portable | - |
Related Weaknesses (CWE)
References
- https://bridgetech.tv/Product
- https://github.com/shiky8/my--cve-vulnerability-research/tree/main/CVE-2025-6320ExploitThird Party Advisory
- https://github.com/shiky8/my--cve-vulnerability-research/tree/main/CVE-2025-6320ExploitThird Party Advisory
FAQ
What is CVE-2025-63205?
CVE-2025-63205 is a vulnerability with a CVSS score of 7.5 (HIGH). An issue was discovered in bridgetech probes VB220 IP Network Probe,VB120 Embedded IP + RF Probe, VB330 High-Capacity Probe, VB440 ST 2110 Production Analytics Probe, and NOMAD, firmware versions 6.5....
How severe is CVE-2025-63205?
CVE-2025-63205 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-63205?
Check the references section above for vendor advisories and patch information. Affected products include: Bridgetech Vb220 Firmware, Bridgetech Vb220, Bridgetech Vb120 Firmware, Bridgetech Vb120, Bridgetech Vb330 Firmware.