CVE-2025-9999
Awaiting Analysis
Awaiting Analysis - Queue
BaseFortify
Publication date: 2025-09-05
Last updated on: 2025-09-05
Assigner: arcinfo
Description
Description
Some payload elements of the messages sent between two stations in a networking architecture are not properly checked on the receiving station allowing an attacker to execute unauthorized commands in the application.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
Currently, no data is known.
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-1288 | The product receives a complex input with multiple elements or fields that must be consistent with each other, but it does not validate or incorrectly validates that the input is actually consistent. |
| CWE-940 | The product establishes a communication channel to handle an incoming request that has been initiated by an actor, but it does not properly verify that the request is coming from the expected origin. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability occurs because some payload elements in messages exchanged between two stations in a networking architecture are not properly validated by the receiving station. This improper checking allows an attacker to execute unauthorized commands within the application.
How can this vulnerability impact me? :
The vulnerability can allow an attacker to execute unauthorized commands in the application, potentially leading to unauthorized actions, data manipulation, or disruption of normal operations within the affected networking environment.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70