What is CVE-2025-10227?

CVE-2025-10227 is a medium-severity vulnerability in Axxonsoft Axxonone C-werk, classified under Missing Encryption of Sensitive Data. CVSS score: 4.6/10. Published 2025-09-10.

How severe is CVE-2025-10227?

Medium severity. CVSS v3 base score is 4.6 out of 10.

Vulnerability in Axxonsoft Axxonone C-werk

CVE-2025-10227

Missing Encryption of Sensitive Data (CWE-311) in the Object Archive component in AxxonSoft Axxon One (C-Werk) before 2.0.8 on Windows and Linux allows a local attacker with access to exported storage or stolen physical drives to extract…

EPSS: 0.000 (1.4th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 4.6 (Medium). Vector: CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N.

Affected products

Axxonsoft Axxonone C-werk — versions 0

Weakness classification (CWE)

CWE-311 — Missing Encryption of Sensitive Data

References

www.axxonsoft.com/legal/axxonsoft-vulnerability-disclosure-policy/security-advi…

Frequently asked questions

What is CVE-2025-10227?: CVE-2025-10227 is a medium-severity vulnerability in Axxonsoft Axxonone C-werk, classified under Missing Encryption of Sensitive Data. CVSS score: 4.6/10. Published 2025-09-10.
How severe is CVE-2025-10227?: Medium severity. CVSS v3 base score is 4.6 out of 10.