CVE-2025-62001

High CVSS: 8.7

BullWall Ransomware Containment supports configurable file and directory exclusions such as '$RECYCLE.BIN' to balance monitoring scope and performance. Certain exclusion patterns could allow an authenticated attacker to rename directories in a way that avoids monitoring. Fixed in 4.6.1.14 and 5.0.0.42, which remove hardcoded exclusion behavior and exposes exclusion handling as configurable settings.

Vendor

Bullwall

Product

Ransomware Containment

CWE

CWE-420

Yayın Tarihi

2025-12-18 21:15:53

Güncelleme

2026-01-15 20:16:03

Source Identifier

9119a7d8-5eab-497f-8521-727c672e3725

KEV Date Added

Kategoriler

CWE-420 Ransomware Containment HIGH Bullwall 2025

Referanslar

https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2025/va-25-352-01.json https://www.cve.org/CVERecord?id=CVE-2025-62001

Benzer Kayıtlar

Medium

CVE-2025-62002

BullWall Ransomware Containment considers the number of files modified to trigger detection. An authenticated attacker c…

High

CVE-2025-62003

BullWall Server Intrusion Protection has a noticeable configuration-dependent delay before the MFA check for RDP connect…

High

CVE-2025-62004

BullWall Server Intrusion Protection (SIP) services are initialized after login services during system startup. A local,…

Medium

CVE-2025-62000

BullWall Ransomware Containment may not always detect an encrypted file. This issue affects a specific file inspection m…