CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-25364

A command injection vulnerability in the me.connectify.SMJobBlessHelper XPC service of Speedify VPN up to v15.0.0 allows attackers to execute arbitrary commands with root-level privileges.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 8.7%

CVSS Severity

CVSS v3 Score 8.4

References

https://connectify.me
https://speedify.com/
https://speedify.com/blog/news/speedify-macos-vpn-application-vulnerability/

Products affected by CVE-2025-25364

Connectify » Speedify » Version: Any

cpe:2.3:a:connectify:speedify:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-25364

Products

Pricing

Contact Us