Improper UI Layer Restriction in CHOCO TEI WATCHER Mini by Inaba
CVE-2025-59479

5.1MEDIUM

Key Information:

Vendor: Inaba Denki Sangyo Co., Ltd.
Status: Choco Tei Watcher Mini (ib-mct001)
Vendor: CVE Published:; 16 December 2025

🔔 Create Inaba Denki Sangyo Co., Ltd. Vulnerability Alert

What is CVE-2025-59479?

The CHOCO TEI WATCHER mini (IB-MCT001) is susceptible to a security flaw that arises from improper restriction of rendered UI layers or frames. This vulnerability allows attackers to execute unintended operations on the product when a user interacts with malicious content while logged in. Users are advised to exercise caution and ensure their device is secure to mitigate the risk associated with this vulnerability.

Affected Version(s)

CHOCO TEI WATCHER mini (IB-MCT001) all versions

References

https://www.inaba.co.jp/files/chocomini_vulnerability_new...

https://jvn.jp/en/vu/JVNVU92827367/

CVSS V4

Score:

5.1

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

CVSS V3.0

Score:

4.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 16, 2025
Vulnerability Reserved
Nov 27, 2025

JSON