Unrated severityNVD Advisory· Published Dec 2, 2025· Updated Dec 2, 2025
Mirion Medical EC2 Software NMIS BioDose Incorrect Permission Assignment for Critical Resource
CVE-2025-62575
Description
NMIS/BioDose V22.02 and previous versions rely on a Microsoft SQL Server database. The SQL user account 'nmdbuser' and other created accounts by default have the sysadmin role. This can lead to remote code execution through the use of certain built-in stored procedures.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=22.02
- Mirion Medical/EC2 Software NMIS BioDosev5Range: 0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.