Out-of-bounds Read in Dmg Mori Digital Co., Ltd. And Nxtech Cente Ipv6
CVE-2025-23406
Out-of-bounds read vulnerability caused by improper checking of TCP MSS option values exists in Cente middleware TCP/IP Network Series, which may lead to processing a specially crafted packet to cause the affected product crashed.
Vulnerability class: Buffer Overflow
EPSS: 0.004 (29.1th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 5.3 (Medium). Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L.
Affected products
- Dmg Mori Digital Co., Ltd. And Nxtech Cente Ipv6 — versions Ver.1.60 and earlier
- Dmg Mori Digital Co., Ltd. And Nxtech Cente Ipv6 Snmpv2 — versions Ver.2.30 and earlier
- Dmg Mori Digital Co., Ltd. And Nxtech Cente Ipv6 Snmpv3 — versions Ver.2.30 and earlier
- Dmg Mori Digital Co., Ltd. And Nxtech Cente Tcp/ipv4 — versions Ver.1.51 and earlier
- Dmg Mori Digital Co., Ltd. And Nxtech Cente Tcp/ipv4 Snmpv2 — versions Ver.2.30 and earlier
- Dmg Mori Digital Co., Ltd. And Nxtech Cente Tcp/ipv4 Snmpv3 — versions Ver.2.30 and earlier
Weakness classification (CWE)
References
Frequently asked questions
- What is CVE-2025-23406?
- CVE-2025-23406 is a medium-severity vulnerability in Dmg Mori Digital Co., Ltd. And Nxtech Cente Ipv6, classified under Out-of-bounds Read. CVSS score: 5.3/10. Published 2025-02-14.
- How severe is CVE-2025-23406?
- Medium severity. CVSS v3 base score is 5.3 out of 10.