Remote Code Execution Vulnerability in SIGB PMB Software by SIGB
CVE-2025-48742

5.4MEDIUM

Key Information:

Vendor: Sigb
Status: Pmb
Vendor: CVE Published:; 27 May 2025

What is CVE-2025-48742?

The installer in SIGB PMB versions prior to 8.0.1.2 contains a vulnerability that allows an attacker to execute arbitrary code remotely. This significant flaw can be exploited by a malicious user to gain unauthorized access to sensitive systems or data, posing substantial security risks. It is essential for users of affected versions to update their installations to the latest version to mitigate potential threats and enhance their security posture.

Affected Version(s)

PMB 0 < 8.0.1.2

References

https://www.sigb.net/index.php?lvl=cmspage&pageid=6&id_ru...

https://forge.sigb.net/projects/pmb/wiki/Changelog_801#CH...

CVSS V3.1

Score:

5.4

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 27, 2025
Vulnerability Reserved
May 23, 2025

JSON

Sigb

What is CVE-2025-48742?

Affected Version(s)

References

CVSS V3.1

Timeline