Threat Intel

v0.1

← CVEs

CVE-2025-40896

MED 6.5
Published
2026-03-04
Last Modified
2026-03-05
Affected Apps
14
Affected Devices
47
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
The server certificate was not verified when an Arc agent connected to a Guardian or CMC. A malicious actor could perform a man-in-the-middle attack and intercept the communication between the Arc agent and the Guardian or CMC. This could result in theft of the client token and sensitive information (such as assets and alerts), impersonation of the server, or injection of spoofed data (such as false asset information or vulnerabilities) into the Guardian or CMC.
Affected Applications in Environment 14
ArcGIS Pro v2.1.10257
1 device
RetroArch v1.10.3.0
1 device
RetroArch v1.16.0.0
1 device
libarchive v3.3.3-6.el8_10
5 devices
libarchive v3.5.3-5.el9_6
19 devices
libarchive v3.3.3-5.el8
3 devices
libarchive v3.5.3-6.el9_6
1 device
libarchive v3.5.3-6.el9_6
8 devices
libarchive v3.5.3-7.el9_7
2 devices
libarchive v3.5.3-7.el9_7
1 device
libarchive v3.3.3-5.el8
1 device
libarchive v3.7.7-5.el10_1
1 device
libarchive v3.1.2-14.el7_7
1 device
libarchive v3.3.3-6.el8_10
2 devices
Affected Devices 47
CAMARON Windows ENGTUTOR-CON Windows HAMMILL-197630 Windows atc.db.usu.edu Linux chela03 Linux chela04 Linux chela05 Linux cleanaddressdev.banner.usu.edu Linux devjobsub.banner.usu.edu Linux dpapsb-161390.aggies.usu.edu Linux dpapsb-191594.mypc.usu.edu Linux el103-02.ece.usu.edu Linux el103-03.ece.usu.edu Linux el103-04.ece.usu.edu Linux el103-05.ece.usu.edu Linux el103-07.ece.usu.edu Linux el103-08.ece.usu.edu Linux el103-09.ece.usu.edu Linux el103-10.ece.usu.edu Linux el103-14.ece.usu.edu Linux el103-15.ece.usu.edu Linux el103-16.ece.usu.edu Linux el103-17.ece.usu.edu Linux el103-18.ece.usu.edu Linux el103-19.ece.usu.edu Linux el103-20.ece.usu.edu Linux el120-01.ece.usu.edu Linux el120-02.ece.usu.edu Linux el120-03.ece.usu.edu Linux el120-04.ece.usu.edu Linux el120-05.ece.usu.edu Linux el120-06.ece.usu.edu Linux el120-08.ece.usu.edu Linux el120-09.ece.usu.edu Linux el120-10.ece.usu.edu Linux el120-11.ece.usu.edu Linux el120-12.ece.usu.edu Linux el120-14.ece.usu.edu Linux eprocdev.banner.usu.edu Linux facreadyprod.pplant.usu.edu Linux facreadytestrhel.pplant.usu.edu Linux facshibsp2.pplant.usu.edu Linux guru.cluster Linux oms.db.usu.edu Linux paymentworksdev.banner.usu.edu Linux thinkstation Linux zldtst.db.usu.edu Linux
References 1