PT-2025-22523 · Unknown · Matrix Series+2

Published

2025-05-22

Updated

2025-05-25

CVE-2025-30172

CVSS v3.1

8.0

High

Vector

AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions ASPECT-Enterprise versions through 3.08.03 NEXUS Series versions through 3.08.03 MATRIX Series versions through 3.08.03

Description Remote Code Execution vulnerabilities are present in ASPECT if session administrator credentials become compromised.

Recommendations For ASPECT-Enterprise versions through 3.08.03, update to a version later than 3.08.03. For NEXUS Series versions through 3.08.03, update to a version later than 3.08.03. For MATRIX Series versions through 3.08.03, update to a version later than 3.08.03.

Fix

RCE

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-94

Related Identifiers

CVE-2025-30172

Affected Products

Aspect-Enterprise

Matrix Series

Nexus Series

PT-2025-22523 · Unknown · Matrix Series+2

CVE-2025-30172

Weakness Enumeration

Related Identifiers

Affected Products

References · 5