CVE-2025-14988

CRITICAL

ibaPDA - Info Disclosure

Title source: llm

Description

A security issue has been identified in ibaPDA that could allow unauthorized actions on the file system under certain conditions. This may impact the confidentiality, integrity, or availability of the system.

References (1)

[Third Party Advisory, US Government Resource] https://www.cisa.gov/news-events/ics-advisories/icsa-26-027-01

Scores

CVSS v4 10.0

EPSS 0.0006

EPSS Percentile 18.9%

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact total

Details

CWE

CWE-732

Status published

Products (1)

iba Systems/ibaPDA 8.12.0

Published Jan 27, 2026

Tracked Since Feb 18, 2026