CVE-2025-9998

MEDIUM

PcVue 12.0.0-12.0.30, 15.0.0-15.2.11, 16.0.0-16.3.2 - Denial of Service via Network Packet Sequence

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-9998. PoCs published by balajigund.

AI-analyzed exploit summary The repository contains no technical details or exploit code, only a vague README mentioning 'artificial intelligence' without specifics. This appears to be a social engineering lure rather than legitimate research.

Description

The sequence of packets received by a Networking server are not correctly checked. An attacker could exploit this vulnerability to send specially crafted messages to force the application to stop.

Exploits (1)

nomisec SUSPICIOUS 1 stars

by balajigund · poc

https://github.com/balajigund/Research-on-CVE-2025-9998

View Code ZIP pw:eip

The repository contains no technical details or exploit code, only a vague README mentioning 'artificial intelligence' without specifics. This appears to be a social engineering lure rather than legitimate research.

Classification

Suspicious 90%

Attack Type

Other

Complexity

Theoretical

Reliability

Theoretical

Target: unknown

No auth needed

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (1)

Core 1

Core References

Various Sources vendor-advisory

https://www.pcvue.com/security/#SB2025-4

Scores

CVSS v4 6.0

EPSS 0.0025

EPSS Percentile 15.7%

CVSS:4.0/AV:A/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/AU:Y/R:U/RE:M/U:Green

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-754

Status published

Products (3)

arcinfo/PcVue 12.0.0 - 12.0.31

arcinfo/PcVue 15.0.0 - 15.2.12

arcinfo/PcVue 16.0.0 - 16.3.3

Published Sep 05, 2025

Tracked Since Feb 18, 2026