CVE-2025-61932

Description

Lanscope Endpoint Manager (On-Premises) (Client program (MR) and Detection agent (DA)) improperly verifies the origin of incoming requests, allowing an attacker to execute arbitrary code by sending specially crafted packets.

CVSS Metrics

• v4.0•CRITICAL•Score: 9.3CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
• v4.0•CRITICAL•Score: 9.3CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
• v3.0•CRITICAL•Score: 9.8CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Trends

Current EPSS score: 2.69%• Percentile: 84%

Techniques & Countermeasures

• CWE-940•Improper Verification of Source of a Communication Channel

  The product establishes a communication channel to handle an incoming request that has been initiated by an actor, but it does not properly verify that the request is coming from the expected origin.

Affected Systems

• motex inc.•lanscope endpoint manager (on-premises) (client program (mr) and detection agent (da))

  Ver.9.4.7.1 and earlier

• Unknown•LANSCOPE Endpoint Manager

  < 9.3.2.7 | ≥ 9.3.3.0, < 9.3.3.9 | ≥ 9.4.0.0, < 9.4.0.5 | ≥ 9.4.1.0, < 9.4.1.5 | ≥ 9.4.2.0, < 9.4.2.6 | ≥ 9.4.3.0, < 9.4.3.8 | ≥ 9.4.4.0, < 9.4.4.6 | ≥ 9.4.5.0, < 9.4.5.4 | ≥ 9.4.6.0, < 9.4.6.3 | ≥ 9.4.7.0, ≤ 9.4.7.1

References (3)

• https://www.motex.co.jp/news/notice/2025/release251020/
• https://jvn.jp/en/jp/JVN86318557/
• https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-61932