Unrated severityNVD Advisory· Published Dec 18, 2025· Updated Jan 15, 2026

BullWall Server Intrusion Protection RDP MFA connection delay

CVE-2025-62003

Description

BullWall Server Intrusion Protection has a noticeable configuration-dependent delay before the MFA check for RDP connections. A remote, authenticated attacker can potentially bypass detection during this delay. Versions 4.6.0.0, 4.6.0.6, 4.6.0.7, and 4.6.1.4 are affected. Other versions may also be affected.

Affected products

BullWall/Server Intrusion Protection (SIP)llm-fuzzy
Range: =4.6.0.0, =4.6.0.6, =4.6.0.7, =4.6.1.4
BullWall/Server Intrusion Protectionv5
Range: 4.6.0.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2025/va-25-352-01.jsonmitregovernment-resourcethird-party-advisory
www.cve.org/CVERecordmitrevdb-entry

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000