Kaleris Navis N4 vulnerabilities
2 known vulnerabilities affecting kaleris/navis_n4.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2025-2566P2CRITICALCVSS 9.3fixed in 4.02025-06-24
CVE-2025-2566 [CRITICAL] CWE-502 CVE-2025-2566: Kaleris NAVIS N4 ULC (Ultra Light Client) contains an unsafe Java deserialization vulnerability. An
Kaleris NAVIS N4 ULC (Ultra Light Client) contains an unsafe Java deserialization vulnerability. An unauthenticated attacker can make specially crafted requests to execute arbitrary code on the server.
nvd
CVE-2025-5087P4MEDIUMCVSS 6.0fixed in 4.02025-06-24
CVE-2025-5087 [MEDIUM] CWE-319 CVE-2025-5087: Kaleris NAVIS N4 ULC (Ultra Light Client) communicates insecurely using zlib-compressed data over HT
Kaleris NAVIS N4 ULC (Ultra Light Client) communicates insecurely using zlib-compressed data over HTTP. An attacker capable of observing network traffic between Ultra Light Clients and N4 servers can extract sensitive information, including plaintext credentials.
nvd