June 4, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
ICS: Schneider Electric Modicon Controllers Vulnerability
May 14, 2025
Multiple Intel Products Vulnerabilities
May 14, 2025
ICS: Schneider Electric Modicon Controllers Vulnerability
May 14, 2025
Multiple Intel Products Vulnerabilities
May 14, 2025
Severity
Medium
Analysis Summary
CVE-2025-1695
In NGINX Unit with the Java Language Module in use, undisclosed requests can lead to an infinite loop and cause an increase in CPU resource utilization. This vulnerability allows a remote attacker to cause a degradation that can lead to a limited denial-of-service (DoS). There is no control plane exposure; this is a data plane issue only. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Impact
- Denial of Service
Indicators of Compromise
CVE
- CVE-2025-1695
Affected Vendors
- F5
Affected Products
- F5 Nginx 1.29.1 - 1.34.2
- F5 Nginx Unit - 1.11.0 - 1.34.2
Remediation
Refer to F5 Security Advisory for patch, upgrade, or suggested workaround information.
