Unrated severityNVD Advisory· Published Oct 23, 2025· Updated Feb 26, 2026

CVE-2025-54964

Description

An issue was discovered in BAE SOCET GXP before 4.6.0.2. An attacker with the ability to interact with the GXP Job Service may inject arbitrary executables. If the Job Service is configured for local-only access, this may allow for privilege escalation in certain situations. If the Job Service is network accessible, this may allow remote command execution.

Affected products

BAE/SOCET GXPdescription
BAE Systems/SOCET GXPllm-fuzzy
Range: <4.6.0.2

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.baesystems.com/en-us/product/geospatial-exploitation-productsmitre
www.geospatialexploitationproducts.com/content/socet-gxp/vulnerabilities-disclosure/mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000