Hardcoded TLS Private Key Vulnerability in Kiloview N30 Firmware
CVE-2025-8915

8.7HIGH

Key Information:

Vendor: Kiloview
Status: N30
Vendor: CVE Published:; 13 October 2025

What is CVE-2025-8915?

The Kiloview N30 firmware version 2.02.246 contains a hardcoded TLS private key and certificate, exposing it to potential man-in-the-middle attacks. This vulnerability allows malicious actors to intercept and manipulate communications over the network, posing a significant risk to data confidentiality and integrity. Users of the Kiloview N30 should assess their exposure and apply mitigations to secure their systems.

Affected Version(s)

N30 2.02.246

References

https://www.kiloview.com/en/support/download/n30-firmware...

CVSS V4

Score:

8.7

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 13, 2025
Vulnerability Reserved
Aug 13, 2025

Credit

Louis Dumas

JSON