VYPR
Low severity3.5NVD Advisory· Published Aug 26, 2025· Updated Jun 17, 2026

CVE-2025-25733

CVE-2025-25733

Description

Incorrect access control in the SPI Flash Chip of Kapsch TrafficCom RIS-9160 & RIS-9260 Roadside Units (RSUs) v3.2.0.829.23, v3.8.0.1119.42, and v4.6.0.1211.28 allows physically proximate attackers to arbitrarily modify SPI flash regions, leading to a degradation of the security posture of the device.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • Kapsch TrafficCom/RIS-9160 & RIS-9260 Roadside Units (RSUs)description
  • Range: v3.2.0.829.23, v3.8.0.1119.42, and v4.6.0.1211.28
  • Range: v3.2.0.829.23, v3.8.0.1119.42, and v4.6.0.1211.28

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.