CVE 8.7 HIGH

IDIS ICM Viewer Argument Injection_CVE-2025-12556

November 6, 2025 invoker category_cve

8.7 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

An argument injection vulnerability exists in the affected product that could allow an attacker to execute arbitrary code within the context of the host machine.

AI Analysis

Argument injection vulnerability allowing arbitrary code execution

Basic Information

ID CVE-2025-12556

Source icscert

Published Nov 6, 2025 at 15:35

Modified Nov 6, 2025 at 15:47

Affected Product

Vendor IDIS

Product ICM Viewer

Version v1.6.0.10

Affected Versions IDIS ICM Viewer v1.6.0.10

CWE Classification

CWE-88

AI Assessment

AI Score 8.7 / 10

AI Severity High

Vendor IDIS

Product ICM Viewer

Version v1.6.0.10

References

www.cisa.gov /news-events/ics-advisories/icsa-25-308-05

{
    "lastseen": "",
    "description": "An argument injection vulnerability exists in the affected product that could allow an attacker to execute arbitrary code within the context of the host machine.",
    "published": "2025-11-06T15:35:58.447Z",
    "modified": "2025-11-06T15:47:08.878Z",
    "type": "cve",
    "title": "IDIS ICM Viewer Argument Injection",
    "source": "icscert",
    "references": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-308-05",
    "id": "CVE-2025-12556",
    "bulletinFamily": "",
    "cwe": [
        "CWE-88"
    ],
    "cvelist": null,
    "sourceData": "IDIS ICM Viewer v1.6.0.10",
    "sourceHref": "",
    "cvss": {
        "score": 8.7,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "ICM Viewer",
    "version": "v1.6.0.10",
    "vendor": "IDIS",
    "ai_description": "Argument injection vulnerability allowing arbitrary code execution",
    "ai_severity": "High",
    "ai_vendor": "IDIS",
    "ai_product": "ICM Viewer",
    "ai_version": "v1.6.0.10",
    "ai_score": 8.7
}

💭 Join the Security Discussion ❌ Cancel Reply