Exposed Web Management Service in Optigo Networks Visualization Tool
CVE-2025-2080

9.3CRITICAL

Key Information:

Vendor: Optigo Networks
Status: Visual Bacnet Capture Tool; Optigo Visual Networks Capture Tool
Vendor: CVE Published:; 13 March 2025

🔔 Create Optigo Networks Vulnerability Alert

What is CVE-2025-2080?

The Optigo Networks Visual BACnet Capture Tool and Visual Networks Capture Tool version 3.1.2rc11 are affected by a security flaw due to an exposed web management service. This vulnerability allows unauthorized access by enabling attackers to bypass established authentication measures. Successful exploitation of this flaw could result in an attacker gaining control over vital utilities managed by these tools, posing significant risks to operational integrity and security.

Affected Version(s)

Optigo Visual Networks Capture Tool 3.1.2rc11

Visual BACnet Capture Tool 3.1.2rc11

References

https://www.cisa.gov/news-events/ics-advisories/icsa-25-0...

government-resource

CVSS V4

Score:

9.3

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Timeline

Vulnerability published
Mar 13, 2025
Vulnerability Reserved
Mar 6, 2025

Credit

Tomer Goldschmidt of Claroty Team82

JSON