CVE-2025-8875
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-08-14
Last updated on: 2025-10-27
Assigner: N-able
Description
Description
Deserialization of Untrusted Data vulnerability in N-able N-central allows Local Execution of Code.This issue affects N-central: before 2025.3.1.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| n-able | n-central | to 2025.3.1 (exc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-502 | The product deserializes untrusted data without sufficiently ensuring that the resulting data will be valid. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a Deserialization of Untrusted Data issue in N-able N-central before version 2025.3.1. It allows an attacker with local access to execute arbitrary code on the affected system by exploiting how the software processes serialized data from untrusted sources.
How can this vulnerability impact me? :
The vulnerability can lead to local execution of arbitrary code, which may result in unauthorized control over the affected system, data compromise, disruption of services, or further exploitation within the network.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70