Arbitrary File Upload Vulnerability in CyberData Intercom Product
CVE-2025-30515

9.3CRITICAL

Key Information:

Vendor

Cyberdata

Status
011209 Sip Emergency Intercom
Vendor
CVE Published:
9 June 2025

What is CVE-2025-30515?

The CyberData 011209 Intercom has a significant vulnerability that permits authenticated attackers to upload arbitrary files to multiple locations within the system. This flaw can potentially allow malicious actors to execute code or compromise sensitive information, highlighting the need for immediate attention and remediation measures.

Affected Version(s)

011209 SIP Emergency Intercom 0 < 22.0.1

References

https://www.cisa.gov/news-events/ics-advisories/icsa-25-1...

CVSS V4

Score:
9.3
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Vera Mens of Claroty Team82 reported these vulnerabilities to CISA.
.
CVE-2025-30515 : Arbitrary File Upload Vulnerability in CyberData Intercom Product