CVE-2025-1532

CVSS 3.1 Score 8.1 of 10 (high)

Details

Published Apr 17, 2025

CWE ID 94

Summary

CVE-2025-1532 represents a code injection vulnerability affecting the Phoneservice module. An attacker who successfully exploits this weakness may compromise the confidentiality and integrity of related services. The precise method of exploitation is not yet fully understood, but potential impacts include potential service disruptions or data exposure. Organizations running vulnerable systems should apply relevant patches as soon as possible to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/3kkqZ1
https://www.cve.org/CVERecord?id=CVE-2025-1532
https://nvd.nist.gov/vuln/detail/CVE-2025-1532

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Know What Matters

For Customers

For Partners

CVE-2025-1532

CVSS 3.1 Score 8.1 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations