CVE-2025-31354
Subnet Solutions PowerSYSTEM Center Out-of-Bounds Read
Vexday Risk Score
13Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 5.3EPSS 0.1%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
11 abr 2025Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
Subnet Solutions PowerSYSTEM Center's SMTPS notification service can be affected by importing an EC certificate with crafted F2m parameters, which can lead to excessive CPU consumption during the evaluation of the curve parameters.
CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
Productos afectados
Subnet Solutions · PowerSYSTEM Center 2020¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →