The U.S. Cybersecurity and Infrastructure Safety Company (CISA) on Wednesday added a important safety flaw impacting Motex Lanscope Endpoint Supervisor to its Recognized Exploited Vulnerabilities (KEV) catalog, stating it has been actively exploited within the wild.
The vulnerability, CVE-2025-61932 (CVSS v4 rating: 9.3), impacts on-premises variations of Lanscope Endpoint Supervisor, particularly Shopper program and Detection Agent, and will permit attackers to execute arbitrary code on vulnerable methods.
“Motex LANSCOPE Endpoint Supervisor comprises an improper verification of supply of a communication channel vulnerability, permitting an attacker to execute arbitrary code by sending specifically crafted packets,” CISA mentioned.
The flaw impacts variations 9.4.7.1 and earlier. It has been addressed within the variations under –
- 9.3.2.7
- 9.3.3.9
- 9.4.0.5
- 9.4.1.5
- 9.4.2.6
- 9.4.3.8
- 9.4.4.6
- 9.4.5.4
- 9.4.6.3, and
- 9.4.7.3
It is at the moment not recognized how the vulnerability is being exploited in real-world assaults, who’s behind them, or the dimensions of such efforts. Nonetheless, an alert issued by the Japan Vulnerability Notes (JVN) portal earlier this week famous that Motex has confirmed an unnamed buyer “acquired a malicious packet suspected to focus on this vulnerability.”
Japan’s JPCERT/CC has additionally acknowledged energetic abuse, stating “instances of receiving unauthorized packets to sure ports have been confirmed in home buyer environments” and that the exercise happened after April 2025.
Based mostly on the data offered within the advisory, it seems that the vulnerability is being exploited to drop an unspecified backdoor on compromised methods.
In gentle of energetic exploitation efforts, Federal Civilian Government Department (FCEB) businesses are advisable to remediate CVE-2025-61932 by November 12, 2025, to safeguard their networks.
Elevate your perspective with NextTech Information, the place innovation meets perception.
Uncover the most recent breakthroughs, get unique updates, and join with a worldwide community of future-focused thinkers.
Unlock tomorrow’s developments immediately: learn extra, subscribe to our publication, and turn into a part of the NextTech group at NextTech-news.com
