Simopro Technology|WinMatrix3 – Insecure Deserialization

July 21, 2025 invoker category_cve

CVE Details

Basic Information

Title Simopro Technology|WinMatrix3 – Insecure Deserialization
Type cve
Published 2025-07-21T05:57:51.661Z
Modified 2025-07-21T05:58:03.835Z

Product Information

Vendor Simipro Technology
Product WinMatrix3
Version 0

CVSS Information

Base Score 9.3 (CRITICAL)
Attack Vector CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

AI Analysis

AI Description WinMatrix3 has an Insecure Deserialization vulnerability, allowing unauthenticated remote attackers to execute arbitrary code by sending maliciously crafted serialized contents.
AI Severity High
AI Vendor Simipro Technology
AI Product WinMatrix3
AI Version 0

Affected Products

  • Simopro Technology WinMatrix3 0

Additional Information

CWE List CWE-502
Source twcert

Description

WinMatrix3 developed by Simopro Technology has an Insecure Deserialization vulnerability, allowing unauthenticated remote attackers to execute arbitrary code on the server by sending maliciously crafted serialized contents.

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.