CVE-2025-54964

Published: Oct 23, 2025

Modified: Feb 26, 2026

PUBLISHED

Description

An issue was discovered in BAE SOCET GXP before 4.6.0.2. An attacker with the ability to interact with the GXP Job Service may inject arbitrary executables. If the Job Service is configured for local-only access, this may allow for privilege escalation in certain situations. If the Job Service is network accessible, this may allow remote command execution.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://www.baesystems.com/en-us/product/geospatial-exploitation-products

https://www.geospatialexploitationproducts.com/content/socet-gxp/vulnerabilities-disclosure/#cve-2025-54964

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-54964

Description

Affected Products

References