CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-61940

NMIS/BioDose V22.02 and previous versions rely on a common SQL Server user account to access data in the database. User access in the client application is restricted by a password authentication check in the client software but the underlying database connection always has access. The latest version of NMIS/BioDose introduces an option to use Windows user authentication with the database, which would restrict this database connection.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 16.6%

CVSS Severity

CVSS v3 Score 8.3

References

https://www.cisa.gov/news-events/ics-medical-advisories/icsma-25-336-01

Products affected by CVE-2025-61940

Mirion » Biodose/nmis » Version: Any

cpe:2.3:a:mirion:biodose/nmis:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-61940

Products

Pricing

Contact Us