- Description
- The IntelliSpace portal application utilizes .NET Remoting for its functionality. The vulnerability arises from the exploitation of port 755 through the deserialization vulnerability. After analyzing the configuration files, we observed that the server had set the TypeFilterLevel to Full which is dangerous as it can potentially lead to remote code execution using deserialization. This issue affects IntelliSpace Portal: 12 and prior.
- Source
- 20705f08-db8b-4497-8f94-7eea62317651
- NVD status
- Awaiting Analysis
CVSS 4.0
- Type
- Secondary
- Base score
- 7.3
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:A/AC:H/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:P/AU:Y/R:U/V:C/RE:M/U:Green
- Severity
- HIGH
- 20705f08-db8b-4497-8f94-7eea62317651
- CWE-502
- Hype score
- Not currently trending
Unpacking CVE-2025-3425: A Deep Dive into a Philips IntelliSpace Portal Vulnerability https://t.co/0ucMzYyJmw https://t.co/P74oQ4vm66
@huntfree27
12 Apr 2025
32 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 CVE-2025-3425 🔴 HIGH (7.3) 🏢 Philips - IntelliSpace Portal 🏗️ 12 and prior 🔗 https://t.co/T37c6InMNX #CyberCron #VulnAlert #InfoSec https://t.co/nNeq3qp0VV
@cybercronai
8 Apr 2025
20 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 CVE-2025-3425 🔴 HIGH (7.3) 🏢 Philips - IntelliSpace Portal 🏗️ 12 and prior 🔗 https://t.co/T37c6InMNX #CyberCron #VulnAlert #InfoSec https://t.co/lAR0ks6XtC
@cybercronai
7 Apr 2025
13 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-3425 The IntelliSpace portal application utilizes .NET Remoting for its functionality. The vulnerability arises from the exploitation of port 755 through the deserialization… https://t.co/kI012t1AmM
@CVEnew
7 Apr 2025
325 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes