CVE-2025-59668 | THREATINT

Description

Multiple versions of Central Monitor CNS-6201 contain a NULL pointer dereference vulnerability. When processing a crafted certain UDP packet, the affected device may abnormally terminate.

PUBLISHED Reserved 2025-09-18 | Published 2025-09-30 | Updated 2025-10-31 | Assigner jpcert

HIGH: 7.5CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

HIGH: 8.7CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Problem types

NULL pointer dereference

Product status

01-03

affected

01-04

affected

01-05

affected

01-06

affected

02-10

affected

02-11

affected

and 02-40

affected

References

www.cisa.gov/...vents/ics-medical-advisories/icsma-25-296-01

www.nihonkohden.com/...erability(CVE-2025-59668)_en_Rev2.pdf

www.nihonkohden.com/security.html

jvn.jp/en/vu/JVNVU96989989/

cve.org (CVE-2025-59668)

nvd.nist.gov (CVE-2025-59668)

Download JSON