What is the CVSS score of CVE-2025-61880?

CVE-2025-61880 has a CVSS 3.1 base score of 8.8 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.9%.

Which versions of Nios are affected by CVE-2025-61880?

Infoblox NIOS deployments through version 9.0.7 are vulnerable to remote code execution via insecure deserialization, affecting organizations that rely on Infoblox for DNS, DHCP, and IP address…. A patch is available.

How to fix or mitigate CVE-2025-61880?

Within 24 hours: Identify all Infoblox NIOS instances in your environment and document their versions and network connectivity. Within 7 days: Apply the vendor patch to all affected systems (versions through 9.0.7), prioritizing internet-facing and production systems. Within 30 days: Verify patch deployment across all instances and conduct vulnerability rescans to confirm remediation.

Nios CVE-2025-61880

HIGH

Deserialization of Untrusted Data (CWE-502)

2026-02-12 cve@mitre.org

RCE Deserialization Nios

8.8

CVSS 3.1 · NVD

Severity by source

NVD PRIMARY

8.8 HIGH

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 22:02 vuln.today

Patch released

Feb 19, 2026 - 15:55 nvd

Patch available

CVE Published

Feb 12, 2026 - 17:16 nvd

HIGH 8.8

DescriptionCVE.org

In Infoblox NIOS through 9.0.7, insecure deserialization can result in remote code execution.

AnalysisAI

In Infoblox NIOS through 9.0.7, insecure deserialization can result in remote code execution. [CVSS 8.8 HIGH]

Technical ContextAI

Classified as CWE-502 (Deserialization of Untrusted Data). Affects Nios. In Infoblox NIOS through 9.0.7, insecure deserialization can result in remote code execution.

RemediationAI

A vendor patch is available — apply it immediately. Restrict network access to the affected service where possible.

CVE-2025-61880 vulnerability details – vuln.today

Back

Nios CVE-2025-61880

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionCVE.org

AnalysisAI

Technical ContextAI

RemediationAI

Share

External POC / Exploit Code