CVE-2025-61880

Published: Feb 12, 2026Modified: Feb 19, 2026

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

In Infoblox NIOS through 9.0.7, insecure deserialization can result in remote code execution.

Affected (9)

Products: Infoblox: Nios

1 product

Configuration A

9 vulnerable

Vulnerable Software	Affected Versions
Infoblox Nios	From 8.6.0 to 8.6.5
Infoblox Nios	Version 8.5.2
Infoblox Nios	Version 9.0.1
Infoblox Nios	Version 9.0.2
Infoblox Nios	Version 9.0.3
Infoblox Nios	Version 9.0.4
Infoblox Nios	Version 9.0.5
Infoblox Nios	Version 9.0.6
Infoblox Nios	Version 9.0.7

Related CWEs

Deserialization of Untrusted Data

The product deserializes untrusted data without sufficiently verifying that the resulting data will be valid.

References (2)

https://infoblox.com

Source: cve@mitre.org

Product

https://support.infoblox.com/s/article/CVE-2025-61879-and-CVE-2025-61880

Source: cve@mitre.org

Vendor AdvisoryPatch

Timeline

No history available yet.