CVE-2025-55114 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

The improper order of AUTHORIZED_CTM_IP validation in the Control-M/Agent, where the Control-M/Server IP address is validated only after the SSL/TLS handshake i…
Medium CVSS: 6.9

CVE-2025-55114

The improper order of AUTHORIZED_CTM_IP validation in the Control-M/Agent, where the Control-M/Server IP address is validated only after the SSL/TLS handshake is completed, exposes the Control-M/Agent to vulnerabilities in the SSL/TLS implementation under certain non-default conditions (e.g. CVE-2025-55117 or CVE-2025-55118) or potentially to resource exhaustion.
Vendor
-
Product
-
CWE
CWE-696
Yayın Tarihi
2025-09-16 13:16:07
Güncelleme
2025-09-17 14:18:55
Source Identifier
cert@airbus.com
KEV Date Added
-

Kategoriler

CWE-696 MEDIUM 2025

Referanslar

https://bmcapps.my.site.com/casemgmt/sc_KnowledgeArticle?sfdcid=000441968 https://bmcapps.my.site.com/casemgmt/sc_KnowledgeArticle?sfdcid=000442099