Security Advisory | EasyShare Authentication Vulnerability
Original release date: 2026-03-13
CVE ID
CVE-2025-15515
CVSS 3.1 Base Score
5.7 Medium (AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N)
Description
The authentication mechanism for a specific feature in the EasyShare module contains a vulnerability. If specific conditions are met on a local network, it can cause data leakage
Software Versions and Fixes
- Software Affected Version Fixed Version
- EasyShare Versions below 7.0.11.5 7.0.11.5
Temporary Fix
NA
Obtaining Fixed Software
This vulnerability can be fixed by downloading the latest version of EasyShare
Source
Florian Draschbacher, Secure Information Technology Center Austria (A-SIT) and Institute of Information Security (ISEC), Graz University of Technology
Update Records
2026-03-13 V1.0 INITIAL
FAQs
NA
vivo Security Procedures
vivo is committed to providing users with best cyber security products and services, and follows the industrial best practice to handle and publish vunerability information.
To report a security vulnerability in vivo products and solutions, please send it to security@vivo.com.
For details, please visit Security Advisory.
To report a security vulnerability in vivo products and solutions, please send it to security@vivo.com.
For details, please visit Security Advisory.