CVE Identifier: CVE-2025-11545

Description

The following projectors have vulnerabilities that allow an attacker to improperly access the HTTP server and execute arbitrary actions.

Models

• Models

Workaround

Apply following workaround to avoid the effects of this vulnerability.

• Use the product only in a safe intranet protected by a firewall and do not connect the product to the Internet.

The above workaround prevents illegal access to the product.

The following products can avoid the impact of this vulnerability by updating the projector firmware (contact us).

• NP-PA1705UL-W, NP-PA1705UL-W+, NP-PA1705UL-B
• NP-PA1705UL-B+, NP-PA1505UL-W, NP-PA1505UL-W+
• NP-PA1505UL-B, NP-PA1505UL-B+
• NP-PV800UL-W, NP-PV800UL-W+, NP-PV800UL-B
• NP-PV800UL-B+, NP-PV710UL-W, NP-PV710UL-W+
• NP-PV710UL-B, NP-PV710UL-B+, NP-PV800UL-W1
• NP-PV800UL-B1, NP-PV710UL-W1, NP-PV710UL-B1
• NP-CP8900UL, NP-PV800UL-B1G, NP-PV710UL-B1G
• NP-PV800UL-WH, NP-PV710UL-WH
• NP-P627UL, NP-P627ULG, NP-P627UL+, NP-P547UL
• NP-P547ULG, NP-P547UL+, NP-P607UL+, NP-CG6600UL
• NP-H6271UL, NP-H5471UL, NP-P627ULH, NP-P547ULH
• NP-PA1004UL-W, NP-PA1004UL-WG, NP-PA1004UL-W+
• NP-PA1004UL-WH, NP-PA1004UL-B, NP-PA1004UL-BG
• NP-PA1004UL-B+, NP-PA804UL-W, NP-PA804UL-WG
• NP-PA804UL-W+, NP-PA804UL-WH, NP-PA804UL-B
• NP-PA804UL-BG, NP-PA804UL-B+, NP-PA1004UL-BH
• NP-PA804UL-BH, NP-PA1004UL-W-1, NP-PA1004UL-B-1
• NP-PA804UL-W-1, NP-PA804UL-B-1

Reference

• CVE-2025-11545

Acknowledgements

Thank you to Mr. Sebastian Pahl from the University of Luxembourg for reporting this vulnerability.