JVNVU#96989989
NIHON KOHDEN Central Monitor CNS-6201 vulnerable to NULL pointer dereference
Overview
Central Monitor CNS-6201 provided by NIHON KOHDEN CORPORATION contains a NULL pointer dereference vulnerability.
Products Affected
- Central Monitor CNS-6201 versions 01-03, 01-04, 01-05, 01-06, 02-10, 02-11, and 02-40
Description
Central Monitor CNS-6201 provided by NIHON KOHDEN CORPORATION contains the following vulnerability.
- NULL pointer dereference (CWE-476)
- CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N Base Score 8.7
- CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Base Score 7.5
- CVE-2025-59668
Impact
When processing a crafted certain UDP packet, the affected device may abnormally terminate.
Solution
Stop using End-of-Support products
The product versions affected by the vulnerability are no longer supported. Stop using the vulnerable products and consider switching to alternatives.
For more information, refer to the information provided by the developer.
Vendor Status
| Vendor | Link |
| NIHON KOHDEN CORPORATION | CNS-6201 Central Monitor Vulnerability (CVE-2025-59668) |
References
JPCERT/CC Addendum
Vulnerability Analysis by JPCERT/CC
Credit
Jared P. Quinn of QuinnTech.ai discovered and reported the vulnerability to the developer and CISA. Cooperating with CISA, JPCERT/CC coordinated between the reporter and the developer.
Other Information
| JPCERT Alert |
|
| JPCERT Reports |
|
| CERT Advisory |
|
| CPNI Advisory |
|
| TRnotes |
|
| CVE |
CVE-2025-59668 |
| JVN iPedia |
|