CVE-2025-48981HIGH 8.6EPSS p1.5%

CVE-2025-48981CVE-2025-48981

Description

An insecure implementation of the proprietary protocol DNET in Product CGM MEDICO allows attackers within the intranet to eavesdrop and manipulate data on the protocol because encryption is optional for this connection.

Scoring

CVSS 3.18.6 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
EPSS0.11% probability of exploitation · percentile 1.5% · 2026-06-19T12:03:05Z
Published2025-10-08
Last modified2026-04-15

Underlying weaknesses· 1

CWE-311

References

  1. https://www.cgm.com/deu_de/allgemein/cybersecurity-en/security-advisoriy.html

1

TypeTargetConfidenceTier
WeaknessMissing Encryption of Sensitive Datacwe-3110%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-3200
CVE
CVE-2025-48906
CVE
CVE-2025-3090
CVE
CVE-2025-59461
CVE
CVE-2025-41709
CVE
CVE-2025-12995
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.