CVE-2025-12425
HIGH WAF: Low
CVSS 7.8
Published: 2025-10-28
CWE-269
Local Privilege Escalation.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5 .
WAF Coverage Analysis
Improper Privilege Management
Low WAF Coverage
OWASP: A01:2021 Broken Access Control
Affected Software
| Vendor | Product | Version |
|---|---|---|
| azure-access | blu-ic2_firmware | up to 1.20 |
| azure-access | blu-ic4_firmware | up to 1.20 |
References
- azure-access.com (Vendor Advisory)