CVE-2025-1283

Dingtian DT-R0 Series Authentication Bypass Using an Alternate Path or Channel

Description

The Dingtian DT-R0 Series is vulnerable to an exploit that allows attackers to bypass login requirements by directly navigating to the main page.

Workaround:

Dingtian has not responded to requests to work with CISA to mitigate this vulnerability, thus no mitigation is available at this time. Users of affected versions of Dingtian DT-R002 are invited to contact Dingtian customer support https://www.dingtian-tech.com/en_us/aboutus.html for additional information.

Link	Tags
https://www.cisa.gov/news-events/ics-advisories/icsa-25-044-18	third party advisory us government resource
https://www.dingtian-tech.com/en_us/aboutus.html?tab=contact_us	product

What is the severity of CVE-2025-1283?: CVE-2025-1283 has been scored as a critical severity vulnerability.
How to fix CVE-2025-1283?: As a workaround for remediating CVE-2025-1283: Dingtian has not responded to requests to work with CISA to mitigate this vulnerability, thus no mitigation is available at this time. Users of affected versions of Dingtian DT-R002 are invited to contact Dingtian customer support https://www.dingtian-tech.com/en_us/aboutus.html for additional information.
Is CVE-2025-1283 being actively exploited in the wild?: As for now, there are no information to confirm that CVE-2025-1283 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2025-1283?: CVE-2025-1283 affects Dingtian DT-R002, Dingtian DT-R008, Dingtian DT-R016, Dingtian DT-R032.