CVE-2025-64125 | Nuvation Energy nCloud VPN Service 2025-12-1 confused deputy

Inserito da Angelo Barbosa | Gen 3, 2026 | CVE

A vulnerability labeled as very critical has been found in Nuvation Energy nCloud VPN Service 2025-12-1. Impacted is an unknown function. Executing manipulation can lead to unintended intermediary.

The identification of this vulnerability is CVE-2025-64125. The attack may be launched remotely. There is no exploit available.

The affected component should be upgraded.

CVE-2025-64125 | Nuvation Energy nCloud VPN Service 2025-12-1 confused deputy

Post correlati

CVE-2025-12403 | Associados Amazon Plugin Plugin up to 0.8 on WordPress Setting brzon_admin_panel cross-site request forgery

CVE-2025-3193 | algoliasearch-helper up to 3.11.1 Search Parameter merge.js _merge prototype pollution (SNYK-JS-ALGOLIASEARCHHELPER-3318396)

CVE-2024-50318 | Ivanti Avalanche up to 6.4.5 null pointer dereference

CVE-2023-52257 | LogoBee 0.2 updates.php id cross site scripting (ID 174815)