End-of-Life Vulnerability in Radiflow iSAP Smart Collector on CentOS 7
CVE-2025-3497

8.7HIGH

Key Information:

Vendor: Radiflow
Status: ISAP Smart Collector
Vendor: CVE Published:; 9 July 2025

What is CVE-2025-3497?

The Radiflow iSAP Smart Collector, based on the now obsolete CentOS 7, faces serious security risks due to the operating system's end of life status. With CentOS 7 reaching its EOL on June 30, 2024, any vulnerabilities in this environment are left unaddressed, making the product susceptible to potential exploitation. Organizations utilizing this product should take immediate action to mitigate risks associated with using unsupported software.

Affected Version(s)

iSAP Smart Collector Linux 1.20 < 3.02-1

References

https://www.cvcn.gov.it/cvcn/cve/CVE-2025-3497

government-resource

CVSS V3.1

Score:

8.7

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 9, 2025
Vulnerability Reserved
Apr 10, 2025