CVE-2025-9999
Awaiting Analysis Awaiting Analysis - Queue
BaseFortify

Publication date: 2025-09-05

Last updated on: 2025-09-05

Assigner: arcinfo

Description
Some payload elements of the messages sent between two stations in a networking architecture are not properly checked on the receiving station allowing an attacker to execute unauthorized commands in the application.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-09-05
Last Modified
2025-09-05
Generated
2026-06-16
AI Q&A
2025-09-05
EPSS Evaluated
2026-06-14
NVD
CVE-2025-9999
EUVD
EUVD-2025-27012
Affected Vendors & Products
Currently, no data is known.
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-940 The product establishes a communication channel to handle an incoming request that has been initiated by an actor, but it does not properly verify that the request is coming from the expected origin.
CWE-1288 The product receives a complex input with multiple elements or fields that must be consistent with each other, but it does not validate or incorrectly validates that the input is actually consistent.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability occurs because some payload elements in messages exchanged between two stations in a networking architecture are not properly validated by the receiving station. This improper checking allows an attacker to execute unauthorized commands within the application.

Impact Analysis

The vulnerability can allow an attacker to execute unauthorized commands in the application, potentially leading to unauthorized actions, data manipulation, or disruption of normal operations within the affected networking environment.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-9999. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart