CVE-2025-7916
Simopro Technology|WinMatrix3 - Insecure Deserialization
Vexday Risk Score
28Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 9.3EPSS 0.8%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
21 Jul 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
WinMatrix3 developed by Simopro Technology has an Insecure Deserialization vulnerability, allowing unauthenticated remote attackers to execute arbitrary code on the server by sending maliciously crafted serialized contents.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected products
Simopro Technology · WinMatrix3Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →