cbcvebase.
CVE-2025-8875
published 2025-08-14

CVE-2025-8875: Deserialization of Untrusted Data vulnerability in N-able N-central allows Local Execution of Code.This issue affects N-central: before 2025.3.1.

PriorityP181high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
KEVITW
CISA Known Exploited Vulnerabilitydue 2025-08-20
Exploited in the wild
EPSS
1.58%
72.5th percentile
Deserialization of Untrusted Data vulnerability in N-able N-central allows Local Execution of Code.This issue affects N-central: before 2025.3.1.

Affected

1 ranges
VendorProductVersion rangeFixed in
n-ablen-central< 2025.3.12025.3.1

Detection & IOCsextracted from sources · hover to see the quote

  • Exploitation has been confirmed only in on-premises N-central environments; cloud-hosted N-able environments show no evidence of exploitation — scope detection efforts to on-prem instances
  • Approximately 2,000 N-central instances are exposed online; as of reporting ~880 remained unpatched and vulnerable — use Shodan/Shadowserver data to identify exposed instances in your environment
  • CISA added CVE-2025-8875 to the Known Exploited Vulnerabilities Catalog; treat any N-central instance running a version prior to 2025.3.1 as actively at risk
  • ·The fix is available only in N-central version 2025.3.1 and later; all versions before 2025.3.1 are vulnerable. Full technical CVE details are withheld by N-able for three weeks post-release per their security disclosure policy.

CVSS provenance

nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv4.09.4CRITICALCVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
vulncheck9.4CRITICAL
cisa9.4CRITICAL
vendor_cisco7.5HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.