CVE-2025-31932

high

Description

Deserialization of untrusted data issue exists in BizRobo! all versions. If this vulnerability is exploited, an arbitrary code is executed on the Management Console. The vendor provides the workaround information and recommends to apply it to the deployment environment.

References

https://knowledge.bizrobo.com/hc/ja/articles/39953373809305

https://knowledge.bizrobo.com/hc/ja/articles/39952052043289

https://knowledge.bizrobo.com/hc/ja/articles/39951710517145

https://knowledge.bizrobo.com/hc/ja/articles/360029772271

https://jvn.jp/en/jp/JVN30641875/

Details

Source: Mitre, NVD

Published: 2025-04-11

Updated: 2025-04-11

Risk Information

CVSS v2

Base Score: 9

Vector: CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.00056