CVE-2025-12507HIGH 8.8EPSS p1.8%

CVE-2025-12507CVE-2025-12507

Description

The service Bizerba Communication Server (BCS) has an unquoted service path. Due to the way Windows searches the executable for the BCS service, malicious programs can be executed.

Scoring

CVSS 3.18.8 (HIGH)
VectorCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
EPSS0.11% probability of exploitation · percentile 1.8% · 2026-06-18T12:00:27Z
Published2025-10-31
Last modified2026-04-15

Underlying weaknesses· 1

CWE-428

References

  1. https://www.bizerba.com/downloads/global/information-security/2025/bizerba-sa-2025-0005.pdf

1

TypeTargetConfidenceTier
WeaknessUnquoted Search Path or Elementcwe-4280%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-21250
CVE
CVE-2025-23120
CVE
CVE-2025-21239
CVE
CVE-2025-21243
CVE
CVE-2025-21233
CVE
CVE-2025-21223
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.