CVE-2025-12424
CRITICAL WAF: Low
CVSS 9.8
Published: 2025-10-28
CWE-269
Privilege Escalation through SUID-bit Binary.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5 .
WAF Coverage Analysis
Improper Privilege Management
Low WAF Coverage
OWASP: A01:2021 Broken Access Control
Affected Software
| Vendor | Product | Version |
|---|---|---|
| azure-access | blu-ic2_firmware | up to 1.20 |
| azure-access | blu-ic4_firmware | up to 1.20 |
References
- azure-access.com (Vendor Advisory)