Improper Privilege Management in Novakon P Series Products
CVE-2025-9966

7.3HIGH

Key Information:

Vendor

Novakon

Status
P Series
Vendor
CVE Published:
23 September 2025

What is CVE-2025-9966?

The Novakon P series products, specifically the P – V2001.A.C518o2 model, are impacted by a critical vulnerability related to improper privilege management. This vulnerability enables attackers to exploit an impacted service, potentially allowing unauthorized root access to the system. This poses significant security risks, as malicious actors could manipulate system controls or data integrity. Organizations utilizing these products need to assess their exposure and implement mitigation strategies to safeguard their systems against potential exploitation.

Affected Version(s)

P series Linux P – V2001.A.c518o2

References

https://cyberdanube.com/security-research/multiple-vulner...

CVSS V4

Score:
7.3
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Physical
Attack Complexity:
High
Attack Required:
Physical
Privileges Required:
Undefined
User Interaction:
Unknown

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

S. Dietz (CyberDanube)
JSON
.
CVE-2025-9966 : Improper Privilege Management in Novakon P Series Products