CVE-2025-3495 - Vulnerability Details - OpenCVE

Delta Electronics COMMGR v1 and v2 uses insufficiently randomized values to generate session IDs (CWE-338). An attacker could easily brute force a session ID and load and execute arbitrary code.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.001.

Exploitation none

Automatable yes

Technical Impact total

No data.

No data.

No data.

No data.

Fixes

Solution

Users are recommended to download and upgrade to COMMGR v2.10.0 or later.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://filecenter.deltaww.com/news/download/doc/Delta-PCSA-2025-00005_COMMGR%20-%20Insufficient%20Randomization%20Authentication%20Bypass_v1.pdf
https://www.cisa.gov/news-events/ics-advisories/icsa-25-105-07

History

Wed, 16 Apr 2025 15:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Wed, 16 Apr 2025 03:15:00 +0000

Type	Values Removed	Values Added
Description		Delta Electronics COMMGR v1 and v2 uses insufficiently randomized values to generate session IDs (CWE-338). An attacker could easily brute force a session ID and load and execute arbitrary code.
Title		COMMGR - Insufficient Randomization Authentication Bypass
Weaknesses		CWE-338
References		https://filecenter.deltaww.com/news/download/doc/Delta-PCSA-2025-00005_COMMGR%20-%20Insufficient%20Randomization%20Authentication%20Bypass_v1.pdf https://www.cisa.gov/news-events/ics-advisories/icsa-25-105-07
Metrics		cvssV3_1 `{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}`

MITRE

Status: PUBLISHED

Assigner: Deltaww

Published: 2025-04-16T03:10:05.952Z

Updated: 2025-08-19T00:11:36.662Z

Reserved: 2025-04-10T06:21:03.795Z

Link: CVE-2025-3495

Vulnrichment

Updated: 2025-04-16T14:23:01.695Z

NVD

Status : Awaiting Analysis

Published: 2025-04-16T03:15:17.530

Modified: 2025-04-16T13:25:37.340

Link: CVE-2025-3495

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2025-3495", "assignerOrgId": "759f5e80-c8e1-4224-bead-956d7b33c98b", "state": "PUBLISHED", "assignerShortName": "Deltaww", "dateReserved": "2025-04-10T06:21:03.795Z", "datePublished": "2025-04-16T03:10:05.952Z", "dateUpdated": "2025-08-19T00:11:36.662Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "platforms": ["Windows"], "product": "COMMGR", "vendor": "Delta Electronics", "versions": [{"status": "affected", "version": "0", "versionType": "custom"}]}], "datePublic": "2025-04-16T03:00:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Delta Electronics COMMGR v1 and v2 <span style=\"background-color: rgb(255, 255, 255);\">uses insufficiently randomized values to generate session IDs (CWE-338). An attacker could easily brute force a session ID and load and execute arbitrary code.</span>"}], "value": "Delta Electronics COMMGR v1 and v2\u00a0uses insufficiently randomized values to generate session IDs (CWE-338). An attacker could easily brute force a session ID and load and execute arbitrary code."}], "impacts": [{"capecId": "CAPEC-21", "descriptions": [{"lang": "en", "value": "CAPEC-21 Exploitation of Trusted Identifiers"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-338", "description": "CWE-338 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "759f5e80-c8e1-4224-bead-956d7b33c98b", "shortName": "Deltaww", "dateUpdated": "2025-08-19T00:11:36.662Z"}, "references": [{"url": "https://filecenter.deltaww.com/news/download/doc/Delta-PCSA-2025-00005_COMMGR%20-%20Insufficient%20Randomization%20Authentication%20Bypass_v1.pdf"}, {"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-105-07"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Users are recommended to download and upgrade to COMMGR v2.10.0 or later."}], "value": "Users are recommended to download and upgrade to COMMGR v2.10.0 or later."}], "source": {"defect": ["CISA"], "discovery": "EXTERNAL"}, "timeline": [{"lang": "en", "time": "2024-12-16T03:01:00.000Z", "value": "Reported"}, {"lang": "en", "time": "2025-04-15T03:02:00.000Z", "value": "Advisory v1 published; Still working on fixing the vulnerability"}, {"lang": "en", "time": "2025-07-07T00:09:00.000Z", "value": "New version of COMMGR v2.10.0 has been released."}], "title": "COMMGR - Insufficient Randomization Authentication Bypass", "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-04-16T14:20:10.386287Z", "id": "CVE-2025-3495", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-04-16T14:35:13.500Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-3495", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2025-04-16T14:20:10.386287Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-04-16T14:23:01.695Z"}}], "cna": {"title": "COMMGR - Insufficient Randomization Authentication Bypass", "source": {"defect": ["CISA"], "discovery": "EXTERNAL"}, "impacts": [{"capecId": "CAPEC-21", "descriptions": [{"lang": "en", "value": "CAPEC-21 Exploitation of Trusted Identifiers"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Delta Electronics", "product": "COMMGR", "versions": [{"status": "affected", "version": "0", "versionType": "custom"}], "platforms": ["Windows"], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2024-12-16T03:01:00.000Z", "value": "Reported"}, {"lang": "en", "time": "2025-04-15T03:02:00.000Z", "value": "Advisory v1 published; Still working on fixing the vulnerability"}, {"lang": "en", "time": "2025-07-07T00:09:00.000Z", "value": "New version of COMMGR v2.10.0 has been released."}], "solutions": [{"lang": "en", "value": "Users are recommended to download and upgrade to COMMGR v2.10.0 or later.", "supportingMedia": [{"type": "text/html", "value": "Users are recommended to download and upgrade to COMMGR v2.10.0 or later.", "base64": false}]}], "datePublic": "2025-04-16T03:00:00.000Z", "references": [{"url": "https://filecenter.deltaww.com/news/download/doc/Delta-PCSA-2025-00005_COMMGR%20-%20Insufficient%20Randomization%20Authentication%20Bypass_v1.pdf"}, {"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-105-07"}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "Delta Electronics COMMGR v1 and v2\u00a0uses insufficiently randomized values to generate session IDs (CWE-338). An attacker could easily brute force a session ID and load and execute arbitrary code.", "supportingMedia": [{"type": "text/html", "value": "Delta Electronics COMMGR v1 and v2 <span style=\"background-color: rgb(255, 255, 255);\">uses insufficiently randomized values to generate session IDs (CWE-338). An attacker could easily brute force a session ID and load and execute arbitrary code.</span>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-338", "description": "CWE-338 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)"}]}], "providerMetadata": {"orgId": "759f5e80-c8e1-4224-bead-956d7b33c98b", "shortName": "Deltaww", "dateUpdated": "2025-08-19T00:11:36.662Z"}}}, "cveMetadata": {"cveId": "CVE-2025-3495", "state": "PUBLISHED", "dateUpdated": "2025-08-19T00:11:36.662Z", "dateReserved": "2025-04-10T06:21:03.795Z", "assignerOrgId": "759f5e80-c8e1-4224-bead-956d7b33c98b", "datePublished": "2025-04-16T03:10:05.952Z", "assignerShortName": "Deltaww"}, "dataVersion": "5.1"}