CVE-2025-3719
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-10-07

Last updated on: 2025-10-09

Assigner: Nozomi Networks Inc.

Description
An access control vulnerability was discovered in the CLI functionality due to a specific access restriction not being properly enforced for users with limited privileges. An authenticated user with limited privileges can issue administrative CLI commands, altering the device configuration, and/or affecting its availability.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-10-07
Last Modified
2025-10-09
Generated
2026-05-07
AI Q&A
2025-10-07
EPSS Evaluated
2026-05-05
NVD
CVE-2025-3719
EUVD
EUVD-2025-32074
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
nozominetworks cmc to 25.2.0 (exc)
nozominetworks guardian to 25.2.0 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-863 The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check.
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

This vulnerability is an access control flaw in the command-line interface (CLI) functionality of a device. It occurs because a specific access restriction is not properly enforced for users with limited privileges. As a result, an authenticated user who should have limited access can execute administrative CLI commands, which can change the device configuration or affect its availability.


How can this vulnerability impact me? :

The vulnerability can allow a user with limited privileges to perform administrative actions on the device, potentially altering its configuration or disrupting its availability. This can lead to unauthorized changes, service interruptions, or degraded device performance.


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart