CVE-2025-25201

Summary

CVE-2025-25201 is a vulnerability affecting the Nitrokey 3 Firmware, specifically versions prior to 1.8.1 for PIV-enabled releases. The issue lies within the PIV application, allowing it to accept invalid keys for the admin key authentication. This weakness could enable an attacker to compromise the integrity of the stored data by generating new keys and overwriting certificates. Access to the administration key is required for such an attack, meaning the attacker cannot extract existing private data or perform cryptographic operations without PIN-based authentication. The vulnerability is resolved in piv-authenticator 0.3.9 and Nitrokey's firmware 1.8.1.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.