Detections
Analytics
CVE-2025-6182
high
Description
The StrongDM Windows service incorrectly handled communication related to system certificate management. Attackers could exploit this behavior to install untrusted root certificates or remove trusted ones.
References
https://security.strongdm.com/?tcuUid=56fde839-9388-4361-8d3b-9baa7b2de2ed
Details
Published: 2025-08-20
Updated: 2025-08-22
Risk Information
CVSS v2
Base Score: 8.5
Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:C
Severity: High
CVSS v3
Base Score: 9.8
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity: Critical
CVSS v4
Base Score: 8.5
Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Severity: High
EPSS
EPSS: 0.00008