← back
CVE-2025-24845

CVE-2025-24845

CVSS 6.3 MEDIUMEPSS 0.2%CWE-88
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 6.3EPSS 0.2%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
06 Feb 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Improper neutralization of argument delimiters in a command ('Argument Injection') issue exists in Defense Platform Home Edition Ver.3.9.51.x and earlier. If an attacker provides specially crafted data to the specific process of the Windows system where the product is running, the system may cause a Blue Screen of Death (BSOD), and as a result, cause a denial-of-service (DoS) condition.
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:N/A:H
Affected products
Humming Heads Inc. · Defense Platform Home Edition

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://jvn.jp/en/jp/JVN66673020/https://www.hummingheads.co.jp/dep/storelist/