CVE-2025-61739
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-12-22
Last updated on: 2025-12-23
Assigner: Johnson Controls
Description
Description
Due to Nonce reuse, attackers can perform reply attack or decrypt captured packets.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| johnson_controls | building_management_systems | 4.0 |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-323 | Nonces should be used for the present occasion and only once. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is caused by Nonce reuse, which allows attackers to perform replay attacks or decrypt captured packets.
How can this vulnerability impact me? :
The vulnerability can impact you by enabling attackers to replay valid data transmissions or decrypt sensitive information from captured packets, potentially compromising the confidentiality and integrity of your communications.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70