CVE-2025-61879

Published: Feb 12, 2026Modified: Feb 19, 2026

7.7

Vector

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:N

Exploitability: 1.3 / Impact: 5.8

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

In Infoblox NIOS through 9.0.7, a High-Privileged User Can Trigger an Arbitrary File Write via the Account Creation Mechanism.

Affected (9)

Products: Infoblox: Nios

1 product

Configuration A

9 vulnerable

Vulnerable Software	Affected Versions
Infoblox Nios	From 8.6.0 to 8.6.5
Infoblox Nios	Version 8.5.2
Infoblox Nios	Version 9.0.1
Infoblox Nios	Version 9.0.2
Infoblox Nios	Version 9.0.3
Infoblox Nios	Version 9.0.4
Infoblox Nios	Version 9.0.5
Infoblox Nios	Version 9.0.6
Infoblox Nios	Version 9.0.7

Related CWEs

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

External Control of File Name or Path

The product allows user input to control or influence paths or file names that are used in filesystem operations.

References (2)

https://infoblox.com

Source: cve@mitre.org

Product

https://support.infoblox.com/s/article/CVE-2025-61879-and-CVE-2025-61880

Source: cve@mitre.org

Vendor AdvisoryPatch

Timeline

No history available yet.