Cognex In-Sight Explorer and In-Sight Camera Firmware Client-Side Enforcement of Server-Side Security Vulnerability

A vulnerability exists in Cognex In-Sight Explorer and In-Sight Camera Firmware, all versions through 6.5.1, allowing client-side software to perform unauthorized management operations via a proprietary protocol on TCP port 1069. This could include changing network settings or modifying user access. The issue arises from improper enforcement of security protocols, enabling potential exploitation by intercepting and replaying authentication credentials.

Impact

Exploitation of this vulnerability could lead to unauthorized management of the device, including changes to network configurations and user access rights.

Remediation

Cognex advises users to transition to next-generation In-Sight Vision Suite-based systems, such as the In-Sight 2800, In-Sight 3800, or In-Sight 8900 series embedded cameras. For additional guidance, refer to the CISA ICS webpage.