Vulnerability in INSTAR 2K+ and 4K Cameras by INSTAR
CVE-2025-8762

7HIGH

Key Information:

Vendor

Instar

Status
2k+
4k
Vendor
CVE Published:
13 August 2025

Badges

๐Ÿ‘พ Exploit Exists

What is CVE-2025-8762?

A vulnerability in INSTAR's 2K+ and 4K cameras allows for improper physical access control due to issues with the UART interface. This flaw could enable an attacker to manipulate the physical device directly, potentially leading to unauthorized access or control. The exploit has been publicly disclosed, indicating its significance in securing these devices.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

2K+ 3.11.1 Build 1124

4K 3.11.1 Build 1124

References

https://vuldb.com/?id.319865
vdb-entry
https://vuldb.com/?ctiid.319865
signaturepermissions-required
https://modzero.com/static/MZ-25-03_modzero_INSTAR.pdf
exploit

CVSS V4

Score:
7
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Physical
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • ๐ŸŸก

    Public PoC available

  • ๐Ÿ‘พ

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

Credit

Michael Imfeld (modzero AG)
JSON
.