What is CVE-2025-9998?

CVE-2025-9998 is a vulnerability in Arcinfo Pcvue, classified under Improper Check for Unusual or Exceptional Conditions. Published 2025-09-05.

Is CVE-2025-9998 known to be exploited?

3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Arcinfo Pcvue

CVE-2025-9998

The sequence of packets received by a Networking server are not correctly checked. An attacker could exploit this vulnerability to send specially crafted messages to force the application to stop.

EPSS: 0.000 (11.4th percentile) — read the EPSS interpretation.

Affected products

Arcinfo Pcvue — versions 16.0.0, 15.0.0, 12.0.0

Weakness classification (CWE)

CWE-754 — Improper Check for Unusual or Exceptional Conditions

Public proof-of-concept exploits

balajigund/Research-on-CVE-2025-9998
ARPSyndicate/cve-scores
nomi-sec/PoC-in-GitHub

References

www.pcvue.com/security/ (vendor-advisory)

Frequently asked questions

What is CVE-2025-9998?: CVE-2025-9998 is a vulnerability in Arcinfo Pcvue, classified under Improper Check for Unusual or Exceptional Conditions. Published 2025-09-05.
Is CVE-2025-9998 known to be exploited?: 3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.