High severity7.0NVD Advisory· Published May 5, 2025· Updated Apr 15, 2026

CVE-2025-4272

Description

A vulnerability was found in Mechrevo Control Console 1.0.2.70. It has been rated as critical. Affected by this issue is some unknown functionality in the library C:\Program Files\OEM\MECHREVO Control Center\UniwillService\MyControlCenter\csCAPI.dll of the component GCUService. The manipulation leads to uncontrolled search path. An attack has to be approached locally. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

drive.google.com/file/d/1VKhLyW0oglACkt-5PgTtN9oRB2jMczeh/viewnvd
vuldb.comnvd
vuldb.comnvd
vuldb.comnvd
www.yuque.com/ba1ma0-an29k/nnxoap/bhd5ckqugggmpttpnvd

News mentions

No linked articles in our index yet.

cvss	0.455
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000