CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-25734

Kapsch TrafficCom RIS-9160 & RIS-9260 Roadside Units (RSUs) v3.2.0.829.23, v3.8.0.1119.42, and v4.6.0.1211.28 was discovered to contain an unauthenticated EFI shell which allows attackers to execute arbitrary code or escalate privileges during the boot process.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 22.8%

CVSS Severity

CVSS v3 Score 9.8

References

Products affected by CVE-2025-25734

Kapsch » Ris-9160 » Version: N/A

cpe:2.3:h:kapsch:ris-9160:-
Kapsch » Ris-9260 » Version: N/A

cpe:2.3:h:kapsch:ris-9260:-
Kapsch » Ris-9160 Firmware » Version: 3.2.0.829.23

cpe:2.3:o:kapsch:ris-9160_firmware:3.2.0.829.23
Kapsch » Ris-9160 Firmware » Version: 3.8.0.1119.42

cpe:2.3:o:kapsch:ris-9160_firmware:3.8.0.1119.42
Kapsch » Ris-9160 Firmware » Version: 4.6.0.1211.28

cpe:2.3:o:kapsch:ris-9160_firmware:4.6.0.1211.28
Kapsch » Ris-9260 Firmware » Version: 3.2.0.829.23

cpe:2.3:o:kapsch:ris-9260_firmware:3.2.0.829.23
Kapsch » Ris-9260 Firmware » Version: 3.8.0.1119.42

cpe:2.3:o:kapsch:ris-9260_firmware:3.8.0.1119.42
Kapsch » Ris-9260 Firmware » Version: 4.6.0.1211.28

cpe:2.3:o:kapsch:ris-9260_firmware:4.6.0.1211.28

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-25734

Products

Pricing

Contact Us