CVE-2025-61880 - Vulnerability Analysis
HighCVSS: 8.8Last Updated: February 13, 2026
Infoblox NIOS - Insecure Deserialization
Published: February 12, 2026Updated: February 13, 2026Remote Exploitable
Overview
Infoblox NIOS <= 9.0.7 contains an insecure deserialization vulnerability caused by improper handling of serialized data, letting remote attackers execute arbitrary code, exploit requires crafted serialized input.
Severity & Score
Severity: High
CVSS Score: 8.8
EPSS Score: 41.6%(Probability of exploitation in next 30 days)
Impact
Remote attackers can execute arbitrary code, potentially leading to full system compromise.
Mitigation
Update to the latest version beyond 9.0.7.
References
Social Media Activity(1 post)
TheHackerWire
@thehackerwire
š CVE-2025-61880 - High (8.8) In Infoblox NIOS through 9.0.7, insecure deserialization can result in remote code execution. š https://www.thehackerwire.com/vulnerability/CVE-2025-61880/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
View original postRelated Resources
Details
- CVE ID
- CVE-2025-61880
- Severity
- High
- CVSS Score
- 8.8
- Type
- insecure_deserialization
- Status
- unconfirmed
- EPSS
- 41.6%
- Social Posts
- 1
CWE
- CWE-502
CVSS Metrics
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
41.6%Probability of exploitation in the next 30 days