This is the top of the page.
Displaying present location in the site.
  1. Home
  2. support
  3. Multiple vulnerabilities in projectors
Main content starts here.

Multiple vulnerabilities in projectors

CVE Identifier: CVE-2025-11540, CVE-2025-11541, CVE-2025-11542, CVE-2025-11543

Description

The following Projectors have vulnerabilities that allow an attacker to:
- Access and read any files within the projector.(CVE-2025-11540)
- Execute arbitrary commands and programs.(CVE-2025-11541, CVE-2025-11542)
- Create and run unauthorized firmware.(CVE-2025-11543)

Models

  • NP-P502HL-2, NP-P502WL-2
  • NP-P502HLG-2
  • NP-P502WLG
  • NP-P502H, NP-P502W
  • NP-P452H, NP-P452W
  • NP-P502HG, NP-P502WG
  • NP-P452HG, NP-P452WG
  • NP-P502H+, NP-P502W+
  • NP-CR5450H, NP-CR5450W
  • NP-P502HL, NP-P502WL
  • NP-P502HLG, NP-P502WLG,
  • NP-P502HL+, NP-P502WL+
  • NP-CR5450HL, NP-CR5450WL
  • NP-UM352W
  • NP-UM352WG
  • NP-UM352W+

Workaround

Apply following workaround to avoid the effects of this vulnerability.

  • Use the product only in a safe intranet protected by a firewall and do not connect the product to the Internet.

The above workaround prevents illegal access to the product.

Reference

Acknowledgements

Thank you to Mr. Sebastian Pahl from the University of Luxembourg for reporting this vulnerability.

Top of this page