Raise3D Pro2 Series 3D Printers**

Plan Patch8.6ICS-CERT ICSA-25-275-01Oct 2, 2025

Attack VectorNetwork

Auth RequiredNone

ComplexityLow

User InteractionNone needed

Summary

Raise3D Pro2 Series 3D printers contain an authentication bypass vulnerability (CWE-288) that is exploitable when developer mode is enabled. Successful exploitation allows an attacker to extract data from the device and compromise its functionality. Raise3D is developing a patched firmware version but has not yet announced a release date. The vulnerability affects all versions of the Pro2 Series.

What this means

What could happen

An attacker with network access could extract data from the Pro2 Series printer or compromise the device itself. This could expose sensitive print files, job data, or network information accessible to the printer.

Who's at risk

Organizations operating Raise3D Pro2 Series 3D printers, particularly those in manufacturing, prototyping, dental labs, or other sectors using additive manufacturing for production. Any facility where these printers are connected to a network with developer mode enabled should treat this as a priority.

How it could be exploited

An attacker on your network (or from the Internet if the printer is exposed) can exploit an authentication bypass in the Pro2 Series when developer mode is enabled. The attacker sends crafted requests to access device functions without valid credentials, allowing data extraction or device compromise.

Prerequisites

Network access to the Raise3D Pro2 Series printer
Developer mode must be enabled on the target printer
No valid credentials required

Remotely exploitableNo authentication required when developer mode is enabledLow complexity attackNo patch currently availableHigh CVSS score (8.6)

Exploitability

Low exploit probability (EPSS 0.1%)

Affected products (1)

ProductAffected VersionsFix Status

Pro2 Series: vers:all/*All versionsNo fix (EOL)

Remediation & Mitigation

0/4

Do now

0/1

WORKAROUNDDisable developer mode on all Pro2 Series printers immediately if it is not actively required for operations

Schedule — requires maintenance window

0/1

Patching may require device reboot — plan for process interruption

HOTFIXMonitor Raise3D Support Center for release of patched firmware and apply immediately when available

Mitigations - no patch available

0/2

Pro2 Series: vers:all/* has reached End of Life. The vendor will not release a patch. Apply the following compensating controls:

HARDENINGIsolate Pro2 Series printers from the Internet and business network; place them on a separate network segment or behind a firewall with restricted access

HARDENINGIf remote access to Pro2 Series printers is required, use a VPN to establish a secure tunnel; ensure the VPN client and concentrator are kept current with security patches

CVEs (1)

CVE-2025-10653

View full CISA ICS-CERT advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/0a06678f-0a53-4f31-8a85-d2b83f70a78d