Simopro Technology｜WinMatrix3 – Insecure Deserialization_CVE-2025-7916

9.3 / 10

CRITICAL

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

WinMatrix3 developed by Simopro Technology has an Insecure Deserialization vulnerability, allowing unauthenticated remote attackers to execute arbitrary code on the server by sending maliciously crafted serialized contents.

Basic Information

ID CVE-2025-7916

Source twcert

Published Jul 21, 2025 at 05:57

Modified Jul 21, 2025 at 18:23

Affected Product

Vendor Simopro Technology

Product WinMatrix3

Affected Versions Simopro Technology WinMatrix3 0

CWE Classification

CWE-502

References

{
    "lastseen": "",
    "description": "WinMatrix3 developed by Simopro Technology has an Insecure Deserialization vulnerability, allowing unauthenticated remote attackers to execute arbitrary code on the server by sending maliciously crafted serialized contents.",
    "published": "2025-07-21T05:57:51.661Z",
    "modified": "2025-07-21T18:23:55.612Z",
    "type": "cve",
    "title": "Simopro Technology\uff5cWinMatrix3 - Insecure Deserialization",
    "source": "twcert",
    "references": "https://www.twcert.org.tw/tw/cp-132-10256-14d55-1.html\nhttps://www.twcert.org.tw/en/cp-139-10257-e88f3-2.html",
    "id": "CVE-2025-7916",
    "bulletinFamily": "",
    "cwe": [
        "CWE-502"
    ],
    "cvelist": null,
    "sourceData": "Simopro Technology WinMatrix3 0",
    "sourceHref": "",
    "cvss": {
        "score": 9.3,
        "severity": "CRITICAL",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "WinMatrix3",
    "version": "0",
    "vendor": "Simopro Technology",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}