CVE-2025-2566
Kaleris NAVIS N4 ULC - Code Injection
Title source: llmDescription
Kaleris NAVIS N4 ULC (Ultra Light Client) contains an unsafe Java deserialization vulnerability. An unauthenticated attacker can make specially crafted requests to execute arbitrary code on the server.
Scores
EPSS
0.0065
EPSS Percentile
70.5%
Classification
CWE
CWE-502
Status
draft
Timeline
Published
Jun 24, 2025
Tracked Since
Feb 18, 2026