CVE-2025-61956
- EPSS 0.11%
- Veröffentlicht 04.11.2025 16:15:05
- Zuletzt bearbeitet 12.11.2025 17:22:11
Radiometrics VizAir is vulnerable to a lack of authentication mechanisms for critical functions, such as admin access and API requests. Attackers can modify configurations without authentication, potentially manipulating active runway settings and mi...
CVE-2025-54863
- EPSS 0.06%
- Veröffentlicht 04.11.2025 16:13:03
- Zuletzt bearbeitet 12.11.2025 14:13:17
Radiometrics VizAir is vulnerable to exposure of the system's REST API key through a publicly accessible configuration file. This allows attackers to remotely alter weather data and configurations, automate attacks against multiple instances, and ext...
CVE-2025-61945
- EPSS 0.21%
- Veröffentlicht 04.11.2025 16:10:49
- Zuletzt bearbeitet 12.11.2025 13:43:42
Radiometrics VizAir is vulnerable to any remote attacker via access to the admin panel of the VizAir system without authentication. Once inside, the attacker can modify critical weather parameters such as wind shear alerts, inversion depth, and CAPE ...