Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2025-25061

🗓️ 04 Apr 2025 02:10:08Reported by jpcertType 
cve
 cve🔗 web.nvd.nist.gov👁 48 Views

Unintended proxy issue in HMI ViewJet and GC-A2 series allows FTP bounce attacks remotely.

Related
Affected
Refs
ReporterTitlePublishedViews
Family
BDU FSTEC		The vulnerability of the microprogrammed software for ViewJet C-more Series and GC-A2 Series touch panels lies in their ability to bypass access control mechanisms, allowing intruders to compromise the integrity of the protected information.
4 Apr 202500:00
bdu_fstec
Circl		CVE-2025-25061
4 Apr 202502:35
circl
CNNVD		JTEKT ELECTRONICS HMI ViewJet C-more 安全漏洞
4 Apr 202500:00
cnnvd
Cvelist		CVE-2025-25061
4 Apr 202502:10
cvelist
EUVD		EUVD-2025-9667
3 Oct 202520:07
euvd
Japan Vulnerability Notes		JVN#17260367: Multiple vulnerabilities in JTEKT ELECTRONICS CORPORATION's products
2 Apr 202500:00
jvn
Japan Vulnerability Notes		Multiple vulnerabilities in JTEKT ELECTRONICS CORPORATION's products
2 Apr 202506:12
jvn
NVD		CVE-2025-25061
4 Apr 202502:15
nvd
Positive Technologies		PT-2025-14826 · Unknown · Hmi Gc-A2 Series +1
2 Apr 202500:00
ptsecurity
RedhatCVE		CVE-2025-25061
6 Apr 202502:30
redhatcve
Rows per page
[
  {
    "vendor": "JTEKT ELECTRONICS CORPORATION",
    "product": "HMI ViewJet C-more series",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "JTEKT ELECTRONICS CORPORATION",
    "product": "HMI GC-A2 series",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
17 Jun 2026 09:00Current
7.3High risk
Vulners AI Score7.3
CVSS 35.8
EPSS0.00376
SSVC
CWE-441
hmi viewjet serieshmi gc-a2 seriesproxy issueremote attackftp bounce attackconfused deputy
48