PT-2025-19997 · Brightsign · Brightsign Os Series 5+1
Adam Merrill
·
Published
2025-05-06
·
Updated
2025-05-08
·
CVE-2025-3925
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
BrightSign OS series 4 versions prior to 8.5.53.1
BrightSign OS series 5 versions prior to 9.0.166
Description
The issue allows for privilege escalation on the device once code execution has been obtained, due to execution with unnecessary privileges.
Recommendations
For BrightSign OS series 4 versions prior to 8.5.53.1, update to version 8.5.53.1 or later.
For BrightSign OS series 5 versions prior to 9.0.166, update to version 9.0.166 or later.
Fix
LPE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Brightsign Os Series 4
Brightsign Os Series 5