End-of-Life Vulnerability in Radiflow iSAP Smart Collector on CentOS 7
CVE-2025-3497

8.7HIGH

Key Information:

Vendor

Radiflow

Vendor
CVE Published:
9 July 2025

What is CVE-2025-3497?

The Radiflow iSAP Smart Collector, based on the now obsolete CentOS 7, faces serious security risks due to the operating system's end of life status. With CentOS 7 reaching its EOL on June 30, 2024, any vulnerabilities in this environment are left unaddressed, making the product susceptible to potential exploitation. Organizations utilizing this product should take immediate action to mitigate risks associated with using unsupported software.

Affected Version(s)

iSAP Smart Collector Linux 1.20 < 3.02-1

References

CVSS V3.1

Score:
8.7
Severity:
HIGH
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-3497 : End-of-Life Vulnerability in Radiflow iSAP Smart Collector on CentOS 7