Vulnerability Details CVE-2025-62003
BullWall Server Intrusion Protection has a noticeable delay before the MFA check when connecting via RDP. A remote authenticated attacker with administrative privileges can potentially bypass detection during this window. Versions 4.6.0.0, 4.6.0.6, 4.6.0.7, and 4.6.1.4 were confirmed to be affected; other versions before and after may also be affected.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 16.4%
CVSS Severity
CVSS v3 Score 6.2
References
Products affected by CVE-2025-62003
-
cpe:2.3:a:bullwall:server_intrusion_protection:4.6.0.0
-
cpe:2.3:a:bullwall:server_intrusion_protection:4.6.0.6
-
cpe:2.3:a:bullwall:server_intrusion_protection:4.6.0.7
-
cpe:2.3:a:bullwall:server_intrusion_protection:4.6.1.4