High severity8.4NVD Advisory· Published Dec 17, 2025· Updated Apr 15, 2026

CVE-2025-14096

Description

A vulnerability exists in multiple Radiometer products that allow an attacker with physical access to the analyzer possibility to extract credential information. The vulnerability is due to a weakness in the design and insufficient credential protection in operating system.

Other related CVE's are CVE-2025-14095 & CVE-2025-14097.

Affected customers have been informed about this vulnerability. This CVE is being published to provide transparency.

Required Configuration for Exposure:

Attacker requires physical access to the analyzer.

Temporary work Around: Only authorized people can physically access the analyzer.

Permanent solution: Local Radiometer representatives will contact all affected customers to discuss a permanent solution.

Exploit Status:

Researchers have provided a working proof-of-concept (PoC). Radiometer is not aware of any public exploit code at the time of this publication.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.radiometer.com/myradiometernvd

News mentions

No linked articles in our index yet.

cvss	0.546
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000