Back to search
CVE-2025-5087
Published: Jun 24, 2025
Modified: Jun 24, 2025
PUBLISHED
Description
Kaleris NAVIS N4 ULC (Ultra Light Client) communicates insecurely using zlib-compressed data over HTTP. An attacker capable of observing network traffic between Ultra Light Clients and N4 servers can extract sensitive information, including plaintext credentials.
| Vendor | Product | Versions |
|---|---|---|
Kaleris | Navis N4 | affected 0 - < 4.0 |
Weaknesses (CWE)
References
https://www.cisa.gov/news-events/ics-advisories/icsa-25-175-01
government-resource
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now