CVE-2025-61956

Name of the Vulnerable Software and Affected Versions Radiometrics VizAir (affected versions not specified)

Description Radiometrics VizAir lacks authentication mechanisms for critical functions, including admin access and API requests. This allows attackers to modify configurations without authentication, potentially manipulating active runway settings and misleading air traffic control (ATC) and pilots. Manipulated meteorological data could also mislead forecasters and ATC, causing inaccurate flight planning.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.