Detections
Analytics

CVE-2025-61932

critical

Description

Lanscope Endpoint Manager (On-Premises) (Client program (MR) and Detection agent (DA)) improperly verifies the origin of incoming requests, allowing an attacker to execute arbitrary code by sending specially crafted packets.

References

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-61932

https://jvn.jp/en/jp/JVN86318557/

https://www.darkreading.com/application-security/bronze-butler-apt-exploits-zero-day-vuln-root-japan

https://www.bleepingcomputer.com/news/security/china-linked-hackers-exploited-lanscope-flaw-as-a-zero-day-in-attacks/

https://thehackernews.com/2025/10/china-linked-tick-group-exploits.html

https://news.sophos.com/en-us/2025/10/30/bronze-butler-exploits-japanese-asset-management-software-vulnerability/

https://www.securityweek.com/lanscope-endpoint-manager-zero-day-exploited-in-the-wild/

https://www.helpnetsecurity.com/2025/10/23/cve-2025-61932-lanscope-endpoint-manager-exploited/

https://www.bleepingcomputer.com/news/security/cisa-warns-of-lanscope-endpoint-manager-flaw-exploited-in-attacks/

https://thehackernews.com/2025/10/critical-lanscope-endpoint-manager-bug.html

https://securityaffairs.com/183768/breaking-news/u-s-cisa-adds-motex-lanscope-flaw-to-its-known-exploited-vulnerabilities-catalog.html

https://www.cisa.gov/news-events/alerts/2025/10/22/cisa-adds-one-known-exploited-vulnerability-catalog

https://www.motex.co.jp/news/notice/2025/release251020/

Details

Source: Mitre, NVD

Published: 2025-10-20

Updated: 2025-10-23

Known Exploited Vulnerability (KEV)

Risk Information

CVSS v2

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Severity: Critical

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

CVSS v4

Base Score: 9.3

Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Severity: Critical

EPSS

EPSS: 0.10339