Security Advisory

CVE-2025-25732

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-08-26 00:00:00

Last updated 2025-10-22 14:55:34

Assigner mitre

State PUBLISHED

Description

Incorrect access control in the EEPROM component of Kapsch TrafficCom RIS-9160 & RIS-9260 Roadside Units (RSUs) v3.2.0.829.23, v3.8.0.1119.42, and v4.6.0.1211.28 allows attackers to replace password hashes stored in the EEPROM with hashes of their own, leading to the escalation of privileges to root.

← Browse all CVEs View on cve.org ↗