CVE-2025-55113CRITICAL 10.0EPSS p18.7%

CVE-2025-55113CVE-2025-55113

Description

If the Access Control List is enforced by the Control-M/Agent and the C router is in use (default in Out-of-support Control-M/Agent versions 9.0.18 to 9.0.20 and potentially earlier unsupported versions; non-default but configurable using the JAVA_AR setting in newer versions), the verification stops at the first NULL byte encountered in the email address referenced in the client certificate. An attacker could bypass configured ACLs by using a specially crafted certificate.

Scoring

CVSS 3.110.0 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
EPSS0.27% probability of exploitation · percentile 18.7% · 2026-06-18T12:00:27Z
Published2025-09-16
Last modified2025-10-10

Underlying weaknesses· 1

CWE-158

References

  1. https://bmcapps.my.site.com/casemgmt/sc_KnowledgeArticle?sfdcid=000441967
  2. https://bmcapps.my.site.com/casemgmt/sc_KnowledgeArticle?sfdcid=000442099

1

TypeTargetConfidenceTier
WeaknessImproper Neutralization of Null Byte or NUL Charactercwe-1580%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-55109
CVE
CVE-2025-55118
CVE
CVE-2025-55116
CVE
CVE-2025-55115
CVE
CVE-2025-55108
CVE
CVE-2025-44005
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.