Severity: Medium
ID: 233733
File Name: mariner_CVE-2025-1861.nasl
Version: 1.1
Type: local
Family: MarinerOS Local Security Checks
Published: 4/1/2025
Updated: 4/1/2025
Supported Sensors: Nessus
Risk Factor: Low
Score: 3.3
Risk Factor: Medium
Base Score: 6.4
Temporal Score: 4.7
Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:P
CVSS Score Source: CVE-2025-1861
Risk Factor: Medium
Base Score: 6.5
Temporal Score: 5.7
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Risk Factor: Medium
Base Score: 6.3
Threat Score: 1.7
Threat Vector: CVSS:4.0/E:U
Vector: CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
CPE: x-cpe:/o:microsoft:cbl-mariner, p-cpe:/a:microsoft:cbl-mariner:php-mysqlnd, p-cpe:/a:microsoft:cbl-mariner:php-pdo-dblib, p-cpe:/a:microsoft:cbl-mariner:php-pspell, p-cpe:/a:microsoft:cbl-mariner:php-enchant, p-cpe:/a:microsoft:cbl-mariner:php-gmp, p-cpe:/a:microsoft:cbl-mariner:php-pdo, p-cpe:/a:microsoft:cbl-mariner:php-intl, p-cpe:/a:microsoft:cbl-mariner:php-ffi, p-cpe:/a:microsoft:cbl-mariner:php-opcache, p-cpe:/a:microsoft:cbl-mariner:php-ldap, p-cpe:/a:microsoft:cbl-mariner:php-debuginfo, p-cpe:/a:microsoft:cbl-mariner:php-mbstring, p-cpe:/a:microsoft:cbl-mariner:php-dbg, p-cpe:/a:microsoft:cbl-mariner:php-bcmath, p-cpe:/a:microsoft:cbl-mariner:php-tidy, p-cpe:/a:microsoft:cbl-mariner:php-process, p-cpe:/a:microsoft:cbl-mariner:php-sodium, p-cpe:/a:microsoft:cbl-mariner:php-embedded, p-cpe:/a:microsoft:cbl-mariner:php-devel, p-cpe:/a:microsoft:cbl-mariner:php-xml, p-cpe:/a:microsoft:cbl-mariner:php-soap, p-cpe:/a:microsoft:cbl-mariner:php-cli, p-cpe:/a:microsoft:cbl-mariner:php-gd, p-cpe:/a:microsoft:cbl-mariner:php-snmp, p-cpe:/a:microsoft:cbl-mariner:php-dba, p-cpe:/a:microsoft:cbl-mariner:php-pgsql, p-cpe:/a:microsoft:cbl-mariner:php-fpm, p-cpe:/a:microsoft:cbl-mariner:php, p-cpe:/a:microsoft:cbl-mariner:php-common, p-cpe:/a:microsoft:cbl-mariner:php-odbc
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/CBLMariner/release, Host/CBLMariner/rpm-list
Exploit Ease: No known exploits are available
Patch Publication Date: 4/2/2025
Vulnerability Publication Date: 3/12/2025
CVE: CVE-2025-1861
IAVA: 2025-A-0183