Use of Hard-coded, Security-relevant Constants

CVE-2025-2081

High

8.7/10

Summary

Optigo Networks Visual BACnet Capture Tool and Optigo Visual Networks Capture Tool version 3.1.2rc11 are vulnerable to an attacker impersonating the web application service and mislead victim clients.

Attack Complexity: LOW
Attack Vector: NETWORK
User Interaction: NONE
Privileges Required: NONE

CWE-547 - Use of Hard-coded, Security-relevant Constants

The program uses hard-coded constants instead of symbolic names for security-critical values, which increases the likelihood of mistakes during code maintenance or security policy change.

References

Advisory Timeline

Published Mar 13, 2025

Use of Hard-coded, Security-relevant Constants

CVE-2025-2081

Summary

CWE-547 - Use of Hard-coded, Security-relevant Constants

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS