CVE-2025-60963
Published: 06 October 2025
Description
Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.
Security Summary
CVE-2025-60963 is an OS Command Injection vulnerability (CWE-78) in the EndRun Technologies Sonoma D12 Network Time Server (GPS) firmware version 6010-0071-000 Ver 4.00. Published on 2025-10-06T17:16:07.193, it carries a CVSS v3.1 base score of 8.2 (AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N). The vulnerability enables attackers to execute arbitrary code, cause a denial of service, gain escalated privileges, and access sensitive information.
The vulnerability can be exploited by unauthenticated remote attackers over the network with low complexity and no user interaction required. Exploitation grants high integrity impact through arbitrary code execution and privilege escalation, alongside low confidentiality impact from sensitive information disclosure and potential denial of service effects.
Advisories and additional details are available at http://endrun.com, http://sonoma.com, and https://xdiv-sec.github.io/vulnerability-research/advisories/2025-10-03-sonoma-d12.
Details
- CWE(s)
Affected Products
MITRE ATT&CK Enterprise Techniques
Why these techniques?
OS command injection in public-facing network time server enables unauthenticated remote exploitation for arbitrary code execution (T1190) and privilege escalation (T1068).