Vulnerability Details CVE-2025-54970
An issue was discovered in BAE SOCET GXP before 4.6.0.2. The SOCET GXP Job Status Service fails to authenticate requests. In some configurations, this may allow remote or local users to abort jobs or read information without the permissions of the job owner.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 4.8%
CVSS Severity
CVSS v3 Score 6.5
References
Products affected by CVE-2025-54970
-
cpe:2.3:a:baesystems:socet_gxp:4.5.0.1
-
cpe:2.3:a:baesystems:socet_gxp:4.5.0.2
-
cpe:2.3:a:baesystems:socet_gxp:4.5.0.3
-
cpe:2.3:a:baesystems:socet_gxp:4.5.0.4
-
cpe:2.3:a:baesystems:socet_gxp:4.5.0.5
-
cpe:2.3:a:baesystems:socet_gxp:4.5.0.6
-
cpe:2.3:a:baesystems:socet_gxp:4.5.0.7
-
cpe:2.3:a:baesystems:socet_gxp:4.5.1.2
-
cpe:2.3:a:baesystems:socet_gxp:4.5.1.3
-
cpe:2.3:a:baesystems:socet_gxp:4.5.1.4
-
cpe:2.3:a:baesystems:socet_gxp:4.5.1.5
-
cpe:2.3:a:baesystems:socet_gxp:4.6.0.0
-
cpe:2.3:a:baesystems:socet_gxp:4.6.0.1