CVE-2025-67109

Published: Dic 23, 2025 Last Modified: Gen 06, 2026
ExploitDB:
Other exploit source:
Google Dorks:
CRITICAL 10,0
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0
Attack Vector: network
Attack Complexity: low
Privileges Required: none
User Interaction: none
Scope: changed
Confidentiality: high
Integrity: high
Availability: high

Description

AI Translation Available

Improper verification of the time certificate in Eclipse Cyclone DDS before v0.10.5 allows attackers to bypass certificate checks and execute commands with System privileges.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score
0,0009
Percentile
0,3th
Updated

EPSS Score Trend (Last 82 Days)

298

Improper Validation of Certificate Expiration

Draft
Abstraction: Variant Structure: Simple
Common Consequences
Security Scopes Affected:
Integrity Other Authentication
Potential Impacts:
Other
Applicable Platforms
All platforms may be affected
Likelihood of Exploit: Low
View CWE Details
Application

Cyclone Data Distribution Service by Eclipse

Product Information
Vendor Eclipse
Product Cyclone Data Distribution Service
Version Range Affected
To 0.10.5 (exclusive)
cpe:2.3:a:eclipse:cyclone_data_distribution_service:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
http://eclipse.com
http://eclipse.com
https://gist.github.com/lkloliver/669e15bc7e6194133e4ee1026…
https://gist.github.com/lkloliver/669e15bc7e6194133e4ee1026ce157e6
https://github.com/eclipse-cyclonedds/cyclonedds/blob/maste…
https://github.com/eclipse-cyclonedds/cyclonedds/blob/master/src/ddsrt/src/time…
https://github.com/eclipse-cyclonedds/cyclonedds/blob/maste…
https://github.com/eclipse-cyclonedds/cyclonedds/blob/master/src/security/built…