CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-25735

Kapsch TrafficCom RIS-9160 & RIS-9260 Roadside Units (RSUs) v3.2.0.829.23, v3.8.0.1119.42, and v4.6.0.1211.28 were discovered to lack SPI Protected Range Registers (PRRs), allowing attackers with software running on the system to modify SPI flash in real-time.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 14.4%

CVSS Severity

CVSS v3 Score 7.5

References

Products affected by CVE-2025-25735

Kapsch » Ris-9160 » Version: N/A

cpe:2.3:h:kapsch:ris-9160:-
Kapsch » Ris-9260 » Version: N/A

cpe:2.3:h:kapsch:ris-9260:-
Kapsch » Ris-9160 Firmware » Version: 3.2.0.829.23

cpe:2.3:o:kapsch:ris-9160_firmware:3.2.0.829.23
Kapsch » Ris-9160 Firmware » Version: 3.8.0.1119.42

cpe:2.3:o:kapsch:ris-9160_firmware:3.8.0.1119.42
Kapsch » Ris-9160 Firmware » Version: 4.6.0.1211.28

cpe:2.3:o:kapsch:ris-9160_firmware:4.6.0.1211.28
Kapsch » Ris-9260 Firmware » Version: 3.2.0.829.23

cpe:2.3:o:kapsch:ris-9260_firmware:3.2.0.829.23
Kapsch » Ris-9260 Firmware » Version: 3.8.0.1119.42

cpe:2.3:o:kapsch:ris-9260_firmware:3.8.0.1119.42
Kapsch » Ris-9260 Firmware » Version: 4.6.0.1211.28

cpe:2.3:o:kapsch:ris-9260_firmware:4.6.0.1211.28

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-25735

Products

Pricing

Contact Us