CVE 8.7 HIGH

Columbia Weather Systems MicroServer Improper Restriction of Communication Channel to Intended Endpoints_CVE-2025-61939

January 7, 2026 invoker category_cve

8.7 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

An unused function in MicroServer can start a reverse SSH connection to a vendor registered domain, without mutual authentication. An attacker on the local network with admin access to the web server, and the ability to manipulate DNS responses, can redirect the SSH connection to an attacker controlled device.

AI Analysis

Improper restriction of communication channel to intended endpoints in MicroServer, allowing an attacker to redirect the SSH connection to an attacker-controlled device.

Basic Information

ID CVE-2025-61939

Source icscert

Published Jan 7, 2026 at 19:56

Modified Jan 7, 2026 at 20:07

Affected Product

Vendor Columbia Weather Systems

Product MicroServer

Affected Versions Columbia Weather Systems MicroServer 0

CWE Classification

CWE-923

AI Assessment

AI Score 8.7 / 10

AI Severity High

Vendor Columbia Weather Systems

Product MicroServer

References

{
    "lastseen": "",
    "description": "An unused function in MicroServer can start a reverse SSH connection to a vendor registered domain, without mutual authentication. An attacker on the local network with admin access to the web server, and the ability to manipulate DNS responses, can redirect the SSH connection to an attacker controlled device.",
    "published": "2026-01-07T19:56:52.386Z",
    "modified": "2026-01-07T20:07:45.479Z",
    "type": "cve",
    "title": "Columbia Weather Systems MicroServer Improper Restriction of Communication Channel to Intended Endpoints",
    "source": "icscert",
    "references": "https://www.cisa.gov/news-events/ics-advisories/icsa-26-006-01\nhttps://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-006-01.json",
    "id": "CVE-2025-61939",
    "bulletinFamily": "",
    "cwe": [
        "CWE-923"
    ],
    "cvelist": null,
    "sourceData": "Columbia Weather Systems MicroServer 0",
    "sourceHref": "",
    "cvss": {
        "score": 8.7,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "MicroServer",
    "version": "0",
    "vendor": "Columbia Weather Systems",
    "ai_description": "Improper restriction of communication channel to intended endpoints in MicroServer, allowing an attacker to redirect the SSH connection to an attacker-controlled device.",
    "ai_severity": "High",
    "ai_vendor": "Columbia Weather Systems",
    "ai_product": "MicroServer",
    "ai_version": "0",
    "ai_score": 8.7
}

💭 Join the Security Discussion ❌ Cancel Reply