CVE-2025-53520

Description

The affected product allows firmware updates to be downloaded from EG4s website, transferred via USB dongles, or installed through EG4s Monitoring Center (remote, cloud-connected interface) or via a serial connection, and can install these files without integrity checks. The TTComp archive format used for the firmware is unencrypted and can be unpacked and altered without detection.