Security Advisory

CVE-2025-55112

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-16 12:19:24

Last updated 2026-02-26 17:48:32

Assigner airbus

State PUBLISHED

Description

Out-of-support Control-M/Agent versions 9.0.18 to 9.0.20 (and potentially earlier unsupported versions) that are configured to use the non-default Blowfish cryptography algorithm use a hardcoded key. An attacker with access to network traffic and to this key could decrypt network traffic between the Control-M/Agent and Server.

← Browse all CVEs View on cve.org ↗