CVE-2025-64769

HIGH
2026-01-16 [email protected]
7.1
CVSS 3.1
Share

CVSS Vector

CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:L
Attack Vector
Adjacent
Attack Complexity
High
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
Low

Lifecycle Timeline

2
Analysis Generated
Mar 12, 2026 - 21:54 vuln.today
CVE Published
Jan 16, 2026 - 02:16 nvd
HIGH 7.1

Tags

Information Disclosure Process Optimization

Description

The Process Optimization application suite leverages connection channels/protocols that by-default are not encrypted and could become subject to hijacking or data leakage in certain man-in-the-middle or passive inspection scenarios.

Analysis

The Process Optimization application suite leverages connection channels/protocols that by-default are not encrypted and could become subject to hijacking or data leakage in certain man-in-the-middle or passive inspection scenarios. [CVSS 7.1 HIGH]

Technical Context

Classified as CWE-319 (Cleartext Transmission of Sensitive Information). Affects Process Optimization. The Process Optimization application suite leverages connection

channels/protocols that by-default are not encrypted and could become

subject to hijacking or data leakage in certain man-in-the-middle or

passive inspection scenarios.

Affected Products

Vendor: Aveva. Product: Process Optimization.

Remediation

Monitor vendor advisories for a patch.

Priority Score

36
Low Medium High Critical
KEV: 0
EPSS: +0.0
CVSS: +36
POC: 0

Share

CVE-2025-64769 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy