{ "document": { "category": "csaf_base", "csaf_version": "2.0", "distribution": { "tlp": { "label": "WHITE" } }, "lang": "en", "notes": [ { "category": "legal_disclaimer", "text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this portal to enhance access to its information and vulnerabilities. The use of this information is subject to the following terms and conditions:\n\nThe vulnerabilities disclosed in this portal are gathered by NCSC-NL from a variety of open sources, which the user can retrieve from other platforms. NCSC-NL makes every reasonable effort to ensure that the content of this portal is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or real-time keeping up-to-date. NCSC-NL does not control nor guarantee the accuracy, relevance, timeliness or completeness of information obtained from these external sources. The vulnerabilities disclosed in this portal are intended solely for the convenience of professional parties to take appropriate measures to manage the risks posed to the cybersecurity. No rights can be derived from the information provided therein.\n\nNCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of the vulnerabilities disclosed in this portal. This includes damage resulting from the inaccuracy of incompleteness of the information contained in it.\nThe information on this page is subject to Dutch law. All disputes related to or arising from the use of this portal regarding the disclosure of vulnerabilities will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings." } ], "publisher": { "category": "coordinator", "contact_details": "cert@ncsc.nl", "name": "National Cyber Security Centre", "namespace": "https://www.ncsc.nl/" }, "title": "CVE-2025-3052", "tracking": { "current_release_date": "2026-04-20T20:10:43.762893Z", "generator": { "date": "2026-02-17T15:00:00Z", "engine": { "name": "V.E.L.M.A", "version": "1.7" } }, "id": "CVE-2025-3052", "initial_release_date": "2025-06-10T17:18:31.400324Z", "revision_history": [ { "date": "2025-06-10T17:18:31.400324Z", "number": "1", "summary": "NCSC Score created." }, { "date": "2025-06-10T18:05:28.874313Z", "number": "2", "summary": "Source connected.| News updated (1).| Description updated for source." }, { "date": "2025-06-10T18:05:36.450759Z", "number": "3", "summary": "NCSC Score updated." }, { "date": "2025-06-10T18:21:07.165270Z", "number": "4", "summary": "Source connected.| Description updated for source.| CVSS created.| Products connected (31).| Product Threats created (62).| Product Remediations created (37).| CWES updated (1).| Exploitable created." }, { "date": "2025-06-10T18:43:34.969002Z", "number": "5", "summary": "Source connected." }, { "date": "2025-06-10T19:38:37.216827Z", "number": "6", "summary": "Source created.| Description created for source.| Products created (14).| References updated (1).| References created (1)." }, { "date": "2025-06-10T19:38:46.321118Z", "number": "7", "summary": "NCSC Score updated." }, { "date": "2025-06-10T19:49:38.410327Z", "number": "8", "summary": "Source created.| News created (1).| Descriptions for news created (1)." }, { "date": "2025-06-10T19:49:39.706869Z", "number": "9", "summary": "NCSC Score updated." }, { "date": "2025-06-10T20:04:41.224390Z", "number": "10", "summary": "Source connected.| News updated (1).| Description updated for source." }, { "date": "2025-06-10T20:04:49.004659Z", "number": "11", "summary": "NCSC Score updated." }, { "date": "2025-06-10T20:26:32.468103Z", "number": "12", "summary": "Source created.| Description created for source.| CVSS created.| References updated (2)." }, { "date": "2025-06-10T20:26:41.258327Z", "number": "13", "summary": "NCSC Score updated." }, { "date": "2025-06-10T20:39:09.023993Z", "number": "14", "summary": "CVSS created." }, { "date": "2025-06-10T21:24:40.445148Z", "number": "15", "summary": "References updated (1)." }, { "date": "2025-06-10T21:38:37.243686Z", "number": "16", "summary": "References updated (1)." }, { "date": "2025-06-11T07:38:30.418598Z", "number": "17", "summary": "Source connected.| Products connected (20).| References updated (3)." }, { "date": "2025-06-11T11:20:06.658468Z", "number": "18", "summary": "NCSC Score updated." }, { "date": "2025-06-11T14:30:38.883421Z", "number": "19", "summary": "Source created.| News created (1).| Descriptions for news created (1)." }, { "date": "2025-06-11T14:30:40.419446Z", "number": "20", "summary": "NCSC Score updated." }, { "date": "2025-06-12T18:27:36.594332Z", "number": "21", "summary": "Source created.| Description created for source.| References created (1).| Vendor_assessment created." }, { "date": "2025-06-13T09:28:33.846803Z", "number": "22", "summary": "NCSC Score updated." }, { "date": "2025-06-30T13:30:58.100709Z", "number": "23", "summary": "Source created.| EPSS created." }, { "date": "2025-07-24T08:06:18.030702Z", "number": "24", "summary": "Products connected (1).| References updated (1)." }, { "date": "2025-07-24T08:07:05.443416Z", "number": "25", "summary": "NCSC Score updated." }, { "date": "2025-08-12T09:06:19.286374Z", "number": "26", "summary": "References created (1)." }, { "date": "2025-08-13T07:42:04.902981Z", "number": "27", "summary": "Products connected (1).| References created (1)." }, { "date": "2025-10-13T12:43:07.787889Z", "number": "28", "summary": "Source created.| CVE status created. (valid)| Description created for source.| CVSS created.| Products created (2)." }, { "date": "2025-10-13T12:43:13.123695Z", "number": "29", "summary": "NCSC Score updated." }, { "date": "2025-10-13T19:17:53.672742Z", "number": "30", "summary": "NCSC Score updated." }, { "date": "2025-10-20T06:33:14.934372Z", "number": "31", "summary": "Product Threats created (31).| Product Threats removed (31)." }, { "date": "2025-10-20T06:33:30.220160Z", "number": "32", "summary": "NCSC Score updated." }, { "date": "2025-10-21T09:06:33.719126Z", "number": "33", "summary": "References created (1)." }, { "date": "2025-10-21T09:06:43.663247Z", "number": "34", "summary": "NCSC Score updated." }, { "date": "2025-10-27T01:29:47.522666Z", "number": "35", "summary": "NCSC Score updated." }, { "date": "2025-12-05T00:43:38.616384Z", "number": "36", "summary": "Source connected.| CVE status created. (valid)| Description created for source.| CVSS created.| Products connected (1)." }, { "date": "2025-12-05T00:43:42.337324Z", "number": "37", "summary": "NCSC Score updated." }, { "date": "2025-12-07T00:23:40.097371Z", "number": "38", "summary": "Description removed for source.| Description created for source." }, { "date": "2025-12-14T14:28:34.191446Z", "number": "39", "summary": "NCSC Score updated." }, { "date": "2025-12-16T06:42:53.845480Z", "number": "40", "summary": "Description removed for source.| Description created for source.| Products created (1)." }, { "date": "2025-12-16T06:43:02.320388Z", "number": "41", "summary": "NCSC Score updated." }, { "date": "2026-01-14T13:51:55.555356Z", "number": "42", "summary": "NCSC Score updated." }, { "date": "2026-02-18T18:31:40.690948Z", "number": "43", "summary": "Products connected (5).| Product Threats created (10).| Product Remediations created (5).| Products removed (5)." }, { "date": "2026-02-18T18:31:54.901517Z", "number": "44", "summary": "NCSC Score updated." }, { "date": "2026-03-10T08:31:40.517714Z", "number": "45", "summary": "NCSC Score updated." }, { "date": "2026-03-14T13:28:18.411600Z", "number": "46", "summary": "NCSC Score updated." }, { "date": "2026-03-19T21:56:39.256747Z", "number": "47", "summary": "Source connected.| CVE status created. (valid)| EPSS created." }, { "date": "2026-03-19T21:56:41.840881Z", "number": "48", "summary": "NCSC Score updated." }, { "date": "2026-03-20T23:18:16.989931Z", "number": "49", "summary": "Source created.| CVE status created. (valid)| Description created for source.| CVSS created.| References created (3)." }, { "date": "2026-03-20T23:18:19.599913Z", "number": "50", "summary": "NCSC Score updated." }, { "date": "2026-03-27T21:40:53.734558Z", "number": "51", "summary": "NCSC Score updated." }, { "date": "2026-04-16T01:22:11.313955Z", "number": "52", "summary": "Source connected.| CVE status created. (valid)| EPSS created." }, { "date": "2026-04-16T01:22:16.674766Z", "number": "53", "summary": "NCSC Score updated." } ], "status": "interim", "version": "53" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/80.02", "product": { "name": "vers:unknown/80.02", "product_id": "CSAFPID-2906600" } }, { "category": "product_version_range", "name": "vers:unknown/81.02", "product": { "name": "vers:unknown/81.02", "product_id": "CSAFPID-2906601" } } ], "category": "product_name", "name": "BiosFlashShell" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/70.17", "product": { "name": "vers:unknown/70.17", "product_id": "CSAFPID-2906602" } }, { "category": "product_version_range", "name": "vers:unknown/70.18", "product": { "name": "vers:unknown/70.18", "product_id": "CSAFPID-2906603" } }, { "category": "product_version_range", "name": "vers:unknown/70.19", "product": { "name": "vers:unknown/70.19", "product_id": "CSAFPID-2906604" } }, { "category": "product_version_range", "name": "vers:unknown/70.20", "product": { "name": "vers:unknown/70.20", "product_id": "CSAFPID-2906605" } }, { "category": "product_version_range", "name": "vers:unknown/70.21", "product": { "name": "vers:unknown/70.21", "product_id": "CSAFPID-2906606" } }, { "category": "product_version_range", "name": "vers:unknown/70.22", "product": { "name": "vers:unknown/70.22", "product_id": "CSAFPID-2906607" } }, { "category": "product_version_range", "name": "vers:unknown/71.17", "product": { "name": "vers:unknown/71.17", "product_id": "CSAFPID-2906608" } }, { "category": "product_version_range", "name": "vers:unknown/71.18", "product": { "name": "vers:unknown/71.18", "product_id": "CSAFPID-2906609" } }, { "category": "product_version_range", "name": "vers:unknown/71.19", "product": { "name": "vers:unknown/71.19", "product_id": "CSAFPID-2906610" } }, { "category": "product_version_range", "name": "vers:unknown/71.20", "product": { "name": "vers:unknown/71.20", "product_id": "CSAFPID-2906611" } }, { "category": "product_version_range", "name": "vers:unknown/71.21", "product": { "name": "vers:unknown/71.21", "product_id": "CSAFPID-2906612" } }, { "category": "product_version_range", "name": "vers:unknown/71.22", "product": { "name": "vers:unknown/71.22", "product_id": "CSAFPID-2906613" } } ], "category": "product_name", "name": "Dtbios" } ], "category": "vendor", "name": "DT Research" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/<=v2.06", "product": { "name": "vers:unknown/<=v2.06", "product_id": "CSAFPID-5228192" } } ], "category": "product_name", "name": "Cray XD670" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/<=v1.65.60", "product": { "name": "vers:unknown/<=v1.65.60", "product_id": "CSAFPID-5033656" } } ], "category": "product_name", "name": "HPE Compute Scale-up Server 3200" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/<=v2.05.12", "product": { "name": "vers:unknown/<=v2.05.12", "product_id": "CSAFPID-5033657" } } ], "category": "product_name", "name": "HPE Superdome Flex 280 Server" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/<=v4.15.08", "product": { "name": "vers:unknown/<=v4.15.08", "product_id": "CSAFPID-5269932" } } ], "category": "product_name", "name": "HPE Superdome Flex Server" } ], "category": "vendor", "name": "HPE" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/unknown", "product": { "name": "vers:unknown/unknown", "product_id": "CSAFPID-1453870", "product_identification_helper": { "cpe": "cpe:/h:hitachi:storage:-" } } } ], "category": "product_name", "name": "Hitachi Storage" } ], "category": "vendor", "name": "Hitachi" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/unknown", "product": { "name": "vers:unknown/unknown", "product_id": "CSAFPID-1346434", "product_identification_helper": { "cpe": "cpe:/h:insyde:uefi:-" } } } ], "category": "product_name", "name": "Insyde UEFI Firmware" } ], "category": "vendor", "name": "Insyde" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/unknown", "product": { "name": "vers:unknown/unknown", "product_id": "CSAFPID-1429708", "product_identification_helper": { "cpe": "cpe:/o:microsoft:windows_10:-" } } } ], "category": "product_name", "name": "Microsoft Windows 10" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/unknown", "product": { "name": "vers:unknown/unknown", "product_id": "CSAFPID-1429705", "product_identification_helper": { "cpe": "cpe:/o:microsoft:windows_server_2012:-" } } } ], "category": "product_name", "name": "Microsoft Windows Server 2012" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/unknown", "product": { "name": "vers:unknown/unknown", "product_id": "CSAFPID-1429704", "product_identification_helper": { "cpe": "cpe:/o:microsoft:windows_server_2012_r2:-" } } } ], "category": "product_name", "name": "Microsoft Windows Server 2012 R2" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/unknown", "product": { "name": "vers:unknown/unknown", "product_id": "CSAFPID-1429709", "product_identification_helper": { "cpe": "cpe:/o:microsoft:windows_server_2016:-" } } } ], "category": "product_name", "name": "Microsoft Windows Server 2016" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/unknown", "product": { "name": "vers:unknown/unknown", "product_id": "CSAFPID-1429706", "product_identification_helper": { "cpe": "cpe:/o:microsoft:windows_server_2019:-" } } } ], "category": "product_name", "name": "Microsoft Windows Server 2019" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/unknown", "product": { "name": "vers:unknown/unknown", "product_id": "CSAFPID-1429707", "product_identification_helper": { "cpe": "cpe:/o:microsoft:windows_server_2022:-" } } } ], "category": "product_name", "name": "Microsoft Windows Server 2022" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/unknown", "product": { "name": "vers:unknown/unknown", "product_id": "CSAFPID-2908521", "product_identification_helper": { "cpe": "cpe:/o:microsoft:windows_server_2025:-" } } } ], "category": "product_name", "name": "Microsoft Windows Server 2025" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/app client for desktop", "product": { "name": "vers:unknown/app client for desktop", "product_id": "CSAFPID-2646314", "product_identification_helper": { "cpe": "cpe:/o:microsoft:windows:app_client_for_desktop" } } }, { "category": "product_version_range", "name": "vers:unknown/remote desktop client for desktop", "product": { "name": "vers:unknown/remote desktop client for desktop", "product_id": "CSAFPID-1502172", "product_identification_helper": { "cpe": "cpe:/o:microsoft:windows:remote_desktop_client_for_desktop" } } }, { "category": "product_version_range", "name": "vers:unknown/security app", "product": { "name": "vers:unknown/security app", "product_id": "CSAFPID-2908522", "product_identification_helper": { "cpe": "cpe:/o:microsoft:windows:update_assistant" } } } ], "category": "product_name", "name": "Windows" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/version 1607", "product": { "name": "vers:unknown/version 1607", "product_id": "CSAFPID-1189227", "product_identification_helper": { "cpe": "cpe:/o:microsoft:windows_10:version_1607" } } }, { "category": "product_version_range", "name": "vers:unknown/version 1809", "product": { "name": "vers:unknown/version 1809", "product_id": "CSAFPID-1189225", "product_identification_helper": { "cpe": "cpe:/o:microsoft:windows_10:version_1809" } } }, { "category": "product_version_range", "name": "vers:unknown/version 21h2", "product": { "name": "vers:unknown/version 21h2", "product_id": "CSAFPID-1189232", "product_identification_helper": { "cpe": "cpe:/o:microsoft:windows_10:version_21h2" } } }, { "category": "product_version_range", "name": "vers:unknown/version 22h2", "product": { "name": "vers:unknown/version 22h2", "product_id": "CSAFPID-1189233", "product_identification_helper": { "cpe": "cpe:/o:microsoft:windows_10:version_22h2" } } } ], "category": "product_name", "name": "Windows 10" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/10.0.14393.8148", "product": { "name": "vers:microsoft/10.0.14393.8148", "product_id": "CSAFPID-2906570", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_10_1607:10.0.14393.8148:*:*:*:*:*:x86:*" } } } ], "category": "product_name", "name": "Windows 10 Version 1607 for 32-bit Systems" }, { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/10.0.14393.8148", "product": { "name": "vers:microsoft/10.0.14393.8148", "product_id": "CSAFPID-2906571", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_10_1607:10.0.14393.8148:*:*:*:*:*:x64:*" } } } ], "category": "product_name", "name": "Windows 10 Version 1607 for x64-based Systems" }, { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/10.0.17763.7434", "product": { "name": "vers:microsoft/10.0.17763.7434", "product_id": "CSAFPID-2906560", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_10_1809:10.0.17763.7434:*:*:*:*:*:x86:*" } } } ], "category": "product_name", "name": "Windows 10 Version 1809 for 32-bit Systems" }, { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/10.0.17763.7434", "product": { "name": "vers:microsoft/10.0.17763.7434", "product_id": "CSAFPID-2906561", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_10_1809:10.0.17763.7434:*:*:*:*:*:x64:*" } } } ], "category": "product_name", "name": "Windows 10 Version 1809 for x64-based Systems" }, { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/10.0.19044.5965", "product": { "name": "vers:microsoft/10.0.19044.5965", "product_id": "CSAFPID-2906562", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_10_21H2:10.0.19044.5965:*:*:*:*:*:x86:*" } } } ], "category": "product_name", "name": "Windows 10 Version 21H2 for 32-bit Systems" }, { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/10.0.19044.5965", "product": { "name": "vers:microsoft/10.0.19044.5965", "product_id": "CSAFPID-2906563", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_10_21H2:10.0.19044.5965:*:*:*:*:*:arm64:*" } } } ], "category": "product_name", "name": "Windows 10 Version 21H2 for ARM64-based Systems" }, { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/10.0.19044.5965", "product": { "name": "vers:microsoft/10.0.19044.5965", "product_id": "CSAFPID-2906564", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_10_21H2:10.0.19044.5965:*:*:*:*:*:x64:*" } } } ], "category": "product_name", "name": "Windows 10 Version 21H2 for x64-based Systems" }, { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/10.0.10240.21034", "product": { "name": "vers:microsoft/10.0.10240.21034", "product_id": "CSAFPID-2906568", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_10_1507:10.0.10240.21034:*:*:*:*:*:x86:*" } } } ], "category": "product_name", "name": "Windows 10 for 32-bit Systems" }, { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/10.0.10240.21034", "product": { "name": "vers:microsoft/10.0.10240.21034", "product_id": "CSAFPID-2906569", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_10_1507:10.0.10240.21034:*:*:*:*:*:x64:*" } } } ], "category": "product_name", "name": "Windows 10 for x64-based Systems" }, { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/10.0.22631.5472", "product": { "name": "vers:microsoft/10.0.22631.5472", "product_id": "CSAFPID-2906549", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_11_23H2:10.0.22631.5472:*:*:*:*:*:arm64:*" } } } ], "category": "product_name", "name": "Windows 11 Version 23H2 for ARM64-based Systems" }, { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/10.0.22631.5472", "product": { "name": "vers:microsoft/10.0.22631.5472", "product_id": "CSAFPID-2906550", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_11_23H2:10.0.22631.5472:*:*:*:*:*:x64:*" } } } ], "category": "product_name", "name": "Windows 11 Version 23H2 for x64-based Systems" }, { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/10.0.26100.4349", "product": { "name": "vers:microsoft/10.0.26100.4349", "product_id": "CSAFPID-2906552", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_11_24H2:10.0.26100.4349:*:*:*:*:*:arm64:*" } } } ], "category": "product_name", "name": "Windows 11 Version 24H2 for ARM64-based Systems" }, { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/10.0.26100.4349", "product": { "name": "vers:microsoft/10.0.26100.4349", "product_id": "CSAFPID-2906553", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_11_24H2:10.0.26100.4349:*:*:*:*:*:x64:*" } } } ], "category": "product_name", "name": "Windows 11 Version 24H2 for x64-based Systems" }, { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/10.0.14393.8066", "product": { "name": "vers:microsoft/10.0.14393.8066", "product_id": "CSAFPID-2835619", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.8066:*:*:*:*:*:*:*" } } } ], "category": "product_name", "name": "Windows Server 2016" }, { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/10.0.14393.8066", "product": { "name": "vers:microsoft/10.0.14393.8066", "product_id": "CSAFPID-2835620", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.8066:*:*:*:*:*:*:*" } } } ], "category": "product_name", "name": "Windows Server 2016 (Server Core installation)" }, { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/10.0.17763.7314", "product": { "name": "vers:microsoft/10.0.17763.7314", "product_id": "CSAFPID-2835596", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.7314:*:*:*:*:*:*:*" } } } ], "category": "product_name", "name": "Windows Server 2019" }, { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/10.0.17763.7314", "product": { "name": "vers:microsoft/10.0.17763.7314", "product_id": "CSAFPID-2835597", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.7314:*:*:*:*:*:*:*" } } } ], "category": "product_name", "name": "Windows Server 2019 (Server Core installation)" }, { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/10.0.20348.3807", "product": { "name": "vers:microsoft/10.0.20348.3807", "product_id": "CSAFPID-2906544", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_server_2022:10.0.20348.3807:*:*:*:*:*:*:*" } } } ], "category": "product_name", "name": "Windows Server 2022" }, { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/10.0.20348.3807", "product": { "name": "vers:microsoft/10.0.20348.3807", "product_id": "CSAFPID-2906545", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_server_2022:10.0.20348.3807:*:*:*:*:*:*:*" } } } ], "category": "product_name", "name": "Windows Server 2022 (Server Core installation)" }, { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/10.0.25398.1665", "product": { "name": "vers:microsoft/10.0.25398.1665", "product_id": "CSAFPID-2906551", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_server_23h2:10.0.25398.1665:*:*:*:*:*:*:*" } } } ], "category": "product_name", "name": "Windows Server 2022, 23H2 Edition (Server Core installation)" }, { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/10.0.26100.4349", "product": { "name": "vers:microsoft/10.0.26100.4349", "product_id": "CSAFPID-2906554", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_server_2025:10.0.26100.4349:*:*:*:*:*:*:*" } } } ], "category": "product_name", "name": "Windows Server 2025" }, { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/10.0.26100.4349", "product": { "name": "vers:microsoft/10.0.26100.4349", "product_id": "CSAFPID-2906548", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_server_2025:10.0.26100.4349:*:*:*:*:*:*:*" } } } ], "category": "product_name", "name": "Windows Server 2025 (Server Core installation)" } ], "category": "product_family", "name": "Windows" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/10.0.19045.5965", "product": { "name": "vers:microsoft/10.0.19045.5965", "product_id": "CSAFPID-5630221", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_10_22H2:10.0.19045.5965:*:*:*:*:*:x86:*" } } } ], "category": "product_name", "name": "Windows 10 Version 22H2 for 32-bit Systems" }, { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/10.0.19045.5965", "product": { "name": "vers:microsoft/10.0.19045.5965", "product_id": "CSAFPID-5630220", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_10_22H2:10.0.19045.5965:*:*:*:*:*:arm64:*" } } } ], "category": "product_name", "name": "Windows 10 Version 22H2 for ARM64-based Systems" }, { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/10.0.19045.5965", "product": { "name": "vers:microsoft/10.0.19045.5965", "product_id": "CSAFPID-5630219", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_10_22H2:10.0.19045.5965:*:*:*:*:*:x64:*" } } } ], "category": "product_name", "name": "Windows 10 Version 22H2 for x64-based Systems" }, { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/10.0.22621.5472", "product": { "name": "vers:microsoft/10.0.22621.5472", "product_id": "CSAFPID-5630217", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_11_22H2:10.0.22621.5472:*:*:*:*:*:arm64:*" } } } ], "category": "product_name", "name": "Windows 11 Version 22H2 for ARM64-based Systems" }, { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/10.0.22621.5472", "product": { "name": "vers:microsoft/10.0.22621.5472", "product_id": "CSAFPID-5630218", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_11_22H2:10.0.22621.5472:*:*:*:*:*:x64:*" } } } ], "category": "product_name", "name": "Windows 11 Version 22H2 for x64-based Systems" }, { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/6.2.9200.25475", "product": { "name": "vers:microsoft/6.2.9200.25475", "product_id": "CSAFPID-2835627", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_server_2012:6.2.9200.25475:*:*:*:*:*:x64:*" } } } ], "category": "product_name", "name": "Windows Server 2012" }, { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/6.2.9200.25475", "product": { "name": "vers:microsoft/6.2.9200.25475", "product_id": "CSAFPID-2835628", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_server_2012:6.2.9200.25475:*:*:*:*:*:x64:*" } } } ], "category": "product_name", "name": "Windows Server 2012 (Server Core installation)" }, { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/6.3.9600.22577", "product": { "name": "vers:microsoft/6.3.9600.22577", "product_id": "CSAFPID-2835629", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_server_2012_R2:6.3.9600.22577:*:*:*:*:*:x64:*" } } } ], "category": "product_name", "name": "Windows Server 2012 R2" }, { "branches": [ { "category": "product_version_range", "name": "vers:microsoft/6.3.9600.22577", "product": { "name": "vers:microsoft/6.3.9600.22577", "product_id": "CSAFPID-2835630", "product_identification_helper": { "cpe": "cpe:2.3:o:microsoft:windows_server_2012_R2:6.3.9600.22577:*:*:*:*:*:x64:*" } } } ], "category": "product_name", "name": "Windows Server 2012 R2 (Server Core installation)" } ], "category": "product_family", "name": "ESU" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/version 22h2", "product": { "name": "vers:unknown/version 22h2", "product_id": "CSAFPID-1189231", "product_identification_helper": { "cpe": "cpe:/o:microsoft:windows_11:version_22h2" } } }, { "category": "product_version_range", "name": "vers:unknown/version 23h2", "product": { "name": "vers:unknown/version 23h2", "product_id": "CSAFPID-1189228", "product_identification_helper": { "cpe": "cpe:/o:microsoft:windows_11:version_23h2" } } }, { "category": "product_version_range", "name": "vers:unknown/version 24h2", "product": { "name": "vers:unknown/version 24h2", "product_id": "CSAFPID-1305167", "product_identification_helper": { "cpe": "cpe:/o:microsoft:windows_11:version_24h2" } } } ], "category": "product_name", "name": "Windows 11" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/2008 r2 sp1", "product": { "name": "vers:unknown/2008 r2 sp1", "product_id": "CSAFPID-1189221", "product_identification_helper": { "cpe": "cpe:/o:microsoft:windows_server:2008_r2_sp1" } } }, { "category": "product_version_range", "name": "vers:unknown/2008 sp2", "product": { "name": "vers:unknown/2008 sp2", "product_id": "CSAFPID-1189224", "product_identification_helper": { "cpe": "cpe:/o:microsoft:windows_server:2008_sp2" } } } ], "category": "product_name", "name": "Windows Server" }, { "branches": [ { "category": "product_version_range", "name": "vers:unknown/23h2 edition", "product": { "name": "vers:unknown/23h2 edition", "product_id": "CSAFPID-1189229", "product_identification_helper": { "cpe": "cpe:/o:microsoft:windows_server_2022:23h2_edition" } } } ], "category": "product_name", "name": "Windows Server 2022" } ], "category": "vendor", "name": "Microsoft" } ] }, "vulnerabilities": [ { "cve": "CVE-2025-3052", "cwe": { "id": "CWE-822", "name": "Untrusted Pointer Dereference" }, "notes": [ { "category": "description", "text": "An arbitrary write vulnerability in Microsoft signed UEFI firmware allows for code execution of untrusted software. This allows an attacker to control its value, leading to arbitrary memory writes, including modification of critical firmware settings stored in NVRAM. Exploiting this vulnerability could enable security bypasses, persistence mechanisms, or full system compromise.", "title": "cveprojectv5 - https://www.cve.org/CVERecord?id=CVE-2025-3052" }, { "category": "description", "text": "An arbitrary write vulnerability in Microsoft signed UEFI firmware allows for code execution of untrusted software. This allows an attacker to control its value, leading to arbitrary memory writes, including modification of critical firmware settings stored in NVRAM. Exploiting this vulnerability could enable security bypasses, persistence mechanisms, or full system compromise.", "title": "nvd - https://nvd.nist.gov/vuln/detail/CVE-2025-3052" }, { "category": "description", "text": "No description is available for this CVE.\nRed Hat components are not directly affected by CVE-2025-3052. However, until the DBX entries are updated on a system, it is possible for an attacker to boot the affected EFI applications even with secure boot protections enabled. Once the affected vendors have released a DBX update, it should be installed through fwupd via LVFS", "title": "redhat - https://access.redhat.com/security/cve/CVE-2025-3052" }, { "category": "description", "text": "Potential security vulnerabilities in HPE Cray XD670 server using UEFI could be remotely exploited to allow disclosure of information, buffer overflow and denial of service, and local code execution.", "title": "hpe - https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbcr04982en_us&docLocale=en_US" }, { "category": "description", "text": "

Untrusted pointer dereference in Windows Secure Boot allows an authorized attacker to bypass a security feature locally.

\n", "title": "microsoft - https://api.msrc.microsoft.com/cvrf/v3.0/cvrf/2025-Jun" }, { "category": "description", "text": "A potential security vulnerability has been identified in HPE Compute Scale-up Server 3200 platform, HPE Superdome Flex and HPE Superdome Flex 280 servers. This vulnerability could be locally exploited to allow execution of arbitrary code, resulting in security bypass.", "title": "hpe - https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbhf04954en_us&docLocale=en_US" }, { "category": "description", "text": "An arbitrary write vulnerability in Microsoft signed UEFI firmware allows for code execution of untrusted software. This allows an attacker to control its value, leading to arbitrary memory writes, including modification of critical firmware settings stored in NVRAM. Exploiting this vulnerability could enable security bypasses, persistence mechanisms, or full system compromise.", "title": "nvd - https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2025-3052" }, { "category": "other", "text": "0.00072", "title": "EPSS" }, { "category": "other", "text": "8.4", "title": "NCSC Score" }, { "category": "other", "text": "There is product data available from a private source, VENDOR FIX as product remediation category, There is product data available from source Certbundde, There is cvss data available from a private source, Is related to (a version of) product Windows, Is related to (a version of) product Windows H, Is related to an uncommon product source, There is news data available from source Bleepingcomputer, Is related to (a version of) product Windows Server", "title": "NCSC Score top increasing factors" }, { "category": "details", "text": "Severity: 3\n", "title": "Vendor assessment" } ], "product_status": { "known_affected": [ "CSAFPID-2835596", "CSAFPID-2835597", "CSAFPID-2835619", "CSAFPID-2835620", "CSAFPID-2835627", "CSAFPID-2835628", "CSAFPID-2835629", "CSAFPID-2835630", "CSAFPID-2906544", "CSAFPID-2906545", "CSAFPID-2906548", "CSAFPID-2906549", "CSAFPID-2906550", "CSAFPID-2906551", "CSAFPID-2906552", "CSAFPID-2906553", "CSAFPID-2906554", "CSAFPID-2906560", "CSAFPID-2906561", "CSAFPID-2906562", "CSAFPID-2906563", "CSAFPID-2906564", "CSAFPID-2906568", "CSAFPID-2906569", "CSAFPID-2906570", "CSAFPID-2906571", "CSAFPID-2906600", "CSAFPID-2906601", "CSAFPID-2906602", "CSAFPID-2906603", "CSAFPID-2906604", "CSAFPID-2906605", "CSAFPID-2906606", "CSAFPID-2906607", "CSAFPID-2906608", "CSAFPID-2906609", "CSAFPID-2906610", "CSAFPID-2906611", "CSAFPID-2906612", "CSAFPID-2906613", "CSAFPID-1189221", "CSAFPID-1189224", "CSAFPID-1189225", "CSAFPID-1189227", "CSAFPID-1189228", "CSAFPID-1189229", "CSAFPID-1189231", "CSAFPID-1189232", "CSAFPID-1189233", "CSAFPID-1305167", "CSAFPID-1429704", "CSAFPID-1429705", "CSAFPID-1429706", "CSAFPID-1429707", "CSAFPID-1429708", "CSAFPID-1429709", "CSAFPID-1502172", "CSAFPID-2646314", "CSAFPID-2908521", "CSAFPID-2908522", "CSAFPID-1453870", "CSAFPID-1346434", "CSAFPID-5033656", "CSAFPID-5033657", "CSAFPID-5228192", "CSAFPID-5269932", "CSAFPID-5630217", "CSAFPID-5630218", "CSAFPID-5630219", "CSAFPID-5630220", "CSAFPID-5630221" ] }, "references": [ { "category": "external", "summary": "Source - bleepingcomputer", "url": "https://www.bleepingcomputer.com/news/microsoft/microsoft-june-2025-patch-tuesday-fixes-exploited-zero-day-66-flaws/" }, { "category": "external", "summary": "Source - microsoft", "url": "https://api.msrc.microsoft.com/cvrf/v3.0/cvrf/2025-Jun" }, { "category": "external", "summary": "Source - ncscclear", "url": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0188" }, { "category": "external", "summary": "Source - cveprojectv5", "url": "https://www.cve.org/CVERecord?id=CVE-2025-3052" }, { "category": "external", "summary": "Source raw - cveprojectv5", "url": "https://raw.githubusercontent.com/CVEProject/cvelistV5/main/cves/2025/3xxx/CVE-2025-3052.json" }, { "category": "external", "summary": "Source - securityweek", "url": "https://www.securityweek.com/microsoft-patch-tuesday-covers-webdav-flaw-marked-as-already-exploited/" }, { "category": "external", "summary": "Source - bleepingcomputer", "url": "https://www.bleepingcomputer.com/news/security/new-secure-boot-flaw-lets-attackers-install-bootkit-malware-patch-now/" }, { "category": "external", "summary": "Source - nvd", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-3052" }, { "category": "external", "summary": "Source raw - nvd", "url": "https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2025-3052" }, { "category": "external", "summary": "Source - certbundde", "url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-1277.json" }, { "category": "external", "summary": "Source - securityweek", "url": "https://www.securityweek.com/flaw-in-industrial-computer-makers-uefi-apps-enables-secure-boot-bypass-on-many-devices/" }, { "category": "external", "summary": "Source - redhat", "url": "https://access.redhat.com/security/cve/CVE-2025-3052" }, { "category": "external", "summary": "Source raw - redhat", "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-3052.json" }, { "category": "external", "summary": "Source - first", "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-3052" }, { "category": "external", "summary": "Source raw - first", "url": "https://api.first.org/data/v1/epss?limit=10000&offset=0" }, { "category": "external", "summary": "Source - hpe", "url": "https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbhf04954en_us&docLocale=en_US" }, { "category": "external", "summary": "Source - hpe", "url": "https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbcr04982en_us&docLocale=en_US" }, { "category": "external", "summary": "Source - first", "url": "https://api.first.org/data/v1/epss?limit=10000&offset=30000" }, { "category": "external", "summary": "Source - nvd", "url": "https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2025-3052" }, { "category": "external", "summary": "Source - first", "url": "https://api.first.org/data/v1/epss?limit=10000&offset=40000" }, { "category": "external", "summary": "News - bleepingcomputer", "url": "https://www.bleepingcomputer.com/news/microsoft/microsoft-june-2025-patch-tuesday-fixes-exploited-zero-day-66-flaws/" }, { "category": "external", "summary": "News - securityweek", "url": "https://www.securityweek.com/microsoft-patch-tuesday-covers-webdav-flaw-marked-as-already-exploited/" }, { "category": "external", "summary": "News - bleepingcomputer", "url": "https://www.bleepingcomputer.com/news/security/new-secure-boot-flaw-lets-attackers-install-bootkit-malware-patch-now/" }, { "category": "external", "summary": "News - securityweek", "url": "https://www.securityweek.com/flaw-in-industrial-computer-makers-uefi-apps-enables-secure-boot-bypass-on-many-devices/" }, { "category": "external", "summary": "Reference - cveprojectv5; nvd", "url": "https://uefi.org/specs/UEFI/2.10/32_Secure_Boot_and_Driver_Signing.html" }, { "category": "external", "summary": "Reference - cveprojectv5; nvd", "url": "https://www.binarly.io/advisories/brly-dva-2025-001" }, { "category": "external", "summary": "Reference - cveprojectv5; nvd", "url": "https://www.kb.cert.org/vuls/id/806555" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-1277.json" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1277" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://msrc.microsoft.com/update-guide/" }, { "category": "external", "summary": "Reference - redhat", "url": "https://www.cve.org/CVERecord?id=CVE-2025-3052" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://www.hitachi.com/products/it/storage-solutions/sec_info/2025/06.html" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://github.com/SafeBreach-Labs/Win-DoS" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://www.insyde.com/security-pledge/sa-2025006/" }, { "category": "external", "summary": "Reference - certbundde", "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog" } ], "remediations": [ { "category": "vendor_fix", "details": "5060531", "product_ids": [ "CSAFPID-2835596", "CSAFPID-2835597", "CSAFPID-2906560", "CSAFPID-2906561" ], "url": "https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5060531" }, { "category": "vendor_fix", "details": "5061010", "product_ids": [ "CSAFPID-2835619", "CSAFPID-2835620", "CSAFPID-2906570", "CSAFPID-2906571" ], "url": "https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5061010" }, { "category": "vendor_fix", "details": "5061059", "product_ids": [ "CSAFPID-2835627", "CSAFPID-2835628" ], "url": "https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5061059" }, { "category": "vendor_fix", "details": "5061018", "product_ids": [ "CSAFPID-2835629", "CSAFPID-2835630" ], "url": "https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5061018" }, { "category": "vendor_fix", "details": "5060525", "product_ids": [ "CSAFPID-2906544", "CSAFPID-2906545" ], "url": "https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5060525" }, { "category": "vendor_fix", "details": "5060526", "product_ids": [ "CSAFPID-2906544", "CSAFPID-2906545" ], "url": "https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5060526" }, { "category": "vendor_fix", "details": "5060841", "product_ids": [ "CSAFPID-2906548", "CSAFPID-2906552", "CSAFPID-2906553", "CSAFPID-2906554" ], "url": "https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5060841" }, { "category": "vendor_fix", "details": "5060842", "product_ids": [ "CSAFPID-2906548", "CSAFPID-2906552", "CSAFPID-2906553", "CSAFPID-2906554" ], "url": "https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5060842" }, { "category": "vendor_fix", "details": "5060999", "product_ids": [ "CSAFPID-2906549", "CSAFPID-2906550", "CSAFPID-5630217", "CSAFPID-5630218" ], "url": "https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5060999" }, { "category": "vendor_fix", "details": "5060118", "product_ids": [ "CSAFPID-2906551" ], "url": "https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5060118" }, { "category": "vendor_fix", "details": "5060533", "product_ids": [ "CSAFPID-2906562", "CSAFPID-2906563", "CSAFPID-2906564", "CSAFPID-5630219", "CSAFPID-5630220", "CSAFPID-5630221" ], "url": "https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5060533" }, { "category": "vendor_fix", "details": "5060998", "product_ids": [ "CSAFPID-2906568", "CSAFPID-2906569" ], "url": "https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5060998" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "baseScore": 8.2, "baseSeverity": "HIGH" }, "products": [ "CSAFPID-1189221", "CSAFPID-1189224", "CSAFPID-1189225", "CSAFPID-1189227", "CSAFPID-1189228", "CSAFPID-1189229", "CSAFPID-1189231", "CSAFPID-1189232", "CSAFPID-1189233", "CSAFPID-1305167", "CSAFPID-1346434", "CSAFPID-1429704", "CSAFPID-1429705", "CSAFPID-1429706", "CSAFPID-1429707", "CSAFPID-1429708", "CSAFPID-1429709", "CSAFPID-1453870", "CSAFPID-1502172", "CSAFPID-2646314", "CSAFPID-2835596", "CSAFPID-2835597", "CSAFPID-2835619", "CSAFPID-2835620", "CSAFPID-2835627", "CSAFPID-2835628", "CSAFPID-2835629", "CSAFPID-2835630", "CSAFPID-2906544", "CSAFPID-2906545", "CSAFPID-2906548", "CSAFPID-2906549", "CSAFPID-2906550", "CSAFPID-2906551", "CSAFPID-2906552", "CSAFPID-2906553", "CSAFPID-2906554", "CSAFPID-2906560", "CSAFPID-2906561", "CSAFPID-2906562", "CSAFPID-2906563", "CSAFPID-2906564", "CSAFPID-2906568", "CSAFPID-2906569", "CSAFPID-2906570", "CSAFPID-2906571", "CSAFPID-2906600", "CSAFPID-2906601", "CSAFPID-2906602", "CSAFPID-2906603", "CSAFPID-2906604", "CSAFPID-2906605", "CSAFPID-2906606", "CSAFPID-2906607", "CSAFPID-2906608", "CSAFPID-2906609", "CSAFPID-2906610", "CSAFPID-2906611", "CSAFPID-2906612", "CSAFPID-2906613", "CSAFPID-2908521", "CSAFPID-2908522", "CSAFPID-5033656", "CSAFPID-5033657", "CSAFPID-5228192", "CSAFPID-5269932", "CSAFPID-5630217", "CSAFPID-5630218", "CSAFPID-5630219", "CSAFPID-5630220", "CSAFPID-5630221" ] } ], "threats": [ { "category": "impact", "details": "Security Feature Bypass", "product_ids": [ "CSAFPID-2835596", "CSAFPID-2835597", "CSAFPID-2835619", "CSAFPID-2835620", "CSAFPID-2835627", "CSAFPID-2835628", "CSAFPID-2835629", "CSAFPID-2835630", "CSAFPID-2906544", "CSAFPID-2906545", "CSAFPID-2906548", "CSAFPID-2906549", "CSAFPID-2906550", "CSAFPID-2906551", "CSAFPID-2906552", "CSAFPID-2906553", "CSAFPID-2906554", "CSAFPID-2906560", "CSAFPID-2906561", "CSAFPID-2906562", "CSAFPID-2906563", "CSAFPID-2906564", "CSAFPID-2906568", "CSAFPID-2906569", "CSAFPID-2906570", "CSAFPID-2906571", "CSAFPID-5630217", "CSAFPID-5630218", "CSAFPID-5630219", "CSAFPID-5630220", "CSAFPID-5630221" ] }, { "category": "exploit_status", "details": "Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely", "product_ids": [ "CSAFPID-2835596", "CSAFPID-2835597", "CSAFPID-2835619", "CSAFPID-2835620", "CSAFPID-2835627", "CSAFPID-2835628", "CSAFPID-2835629", "CSAFPID-2835630", "CSAFPID-2906544", "CSAFPID-2906545", "CSAFPID-2906548", "CSAFPID-2906549", "CSAFPID-2906550", "CSAFPID-2906551", "CSAFPID-2906552", "CSAFPID-2906553", "CSAFPID-2906554", "CSAFPID-2906560", "CSAFPID-2906561", "CSAFPID-2906562", "CSAFPID-2906563", "CSAFPID-2906564", "CSAFPID-2906568", "CSAFPID-2906569", "CSAFPID-2906570", "CSAFPID-2906571", "CSAFPID-5630217", "CSAFPID-5630218", "CSAFPID-5630219", "CSAFPID-5630220", "CSAFPID-5630221" ] }, { "category": "exploit_status", "details": "exploited" } ], "title": "CVE-2025-3052" } ] }