CVE-2025-2566

Kaleris NAVIS N4 ULC (Ultra Light Client) contains an unsafe Java deserialization vulnerability. An unauthenticated attacker can make specially crafted requests to execute arbitrary code on the server.

Assigner : ics-cert@hq.dhs.gov

More information : https://www.cisa.gov/news-events/ics-advisories/icsa-25-175-01