CVE-2025-27725

Name of the Vulnerable Software and Affected Versions ACAT versions prior to 3.13

Description A time-of-check time-of-use race condition exists in some ACAT versions prior to 3.13 within Ring 3: User Applications. This can lead to a denial of service. An unprivileged software adversary with an authenticated user, combined with a high complexity attack, may enable denial of service. The issue may occur via local access when attack requirements are not present, without special internal knowledge, and requires active user interaction. The potential impact includes high availability compromise of the vulnerable system, resulting in subsequent system confidentiality, integrity, and availability impacts.

Recommendations Update to version 3.13 or later.