CVE-2025-4692 | THREATINT

Description

Actors can use a maliciously crafted JavaScript object notation (JSON) web token (JWT) to perform privilege escalation by submitting the malicious JWT to a vulnerable method exposed on the cloud platform. If the exploit is successful, the user can escalate privileges to access any device managed by the ABUP Cloud Update Platform.

PUBLISHED Reserved 2025-05-14 | Published 2025-05-22 | Updated 2025-05-23 | Assigner icscert

MEDIUM: 6.8CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:L

MEDIUM: 5.9CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:P/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N

Problem types

CWE-266

Product status

Default status

unaffected

All versions

affected

Credits

Daniel Christensen of Telenor reported this vulnerability to CISA. finder

References

www.cisa.gov/news-events/ics-advisories/icsa-25-140-01

cve.org (CVE-2025-4692)

nvd.nist.gov (CVE-2025-4692)

Download JSON