Vulnerabilities

CVE-2025-35061

by Fred · 09/10/2025

Newforma Info Exchange (NIX) ‘/NPCSRemoteWeb/LegacyIntegrationServices.asmx’ allows a remote, unauthenticated attacker to cause NIX to make an SMB connection to an attacker-controlled system. The attacker can capture the NTLMv2 hash of the user-configured NIX service account.

More information : https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2025/va-25-282-01.json

Similar

Tags: Cybersecurity Alert