Cyber Resilience

CVE-2025-2450

High

Published: 18 March 2025

Published
18 March 2025
Modified
18 August 2025
KEV Added
Patch
CVSS Score v3.1 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score 0.0052 67.3th percentile
Risk Priority 18 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2025-2450 is a high-severity Product UI does not Warn User of Unsafe Actions (CWE-356) vulnerability in Ni Vision Builder Ai. Its CVSS base score is 8.8 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Drive-by Compromise (T1189); ranked in the top 32.7% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

This vulnerability is AI-related — categorised as Computer Vision; in the Supply Chain and Deployment risk domain.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-2 (Flaw Remediation).

Deeper analysis

CVE-2025-2450 is a remote code execution vulnerability in NI Vision Builder AI that stems from missing warnings during VBAI file processing. The flaw permits execution of dangerous scripts without user notification, affecting installations of the software and carrying a CVSS 3.1 score of 8.8.

Remote attackers can exploit the issue by supplying a malicious VBAI file or directing a target to a malicious page. Successful exploitation grants arbitrary code execution in the context of the current user, though user interaction is required to trigger the flaw.

The issue was reported as ZDI-CAN-22833 and is detailed in the Zero Day Initiative advisory ZDI-25-147. The EPSS score remains low, with a current value of 0.0052 and a peak of 0.0102.

EU & UK References

Vulnerability details

NI Vision Builder AI VBAI File Processing Missing Warning Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of NI Vision Builder AI. User interaction is required to exploit this vulnerability in that…

more

the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing of VBAI files. The issue results from allowing the execution of dangerous script without user warning. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-22833.

CWE(s)

AI Security AnalysisAI

AI Category
Computer Vision
Risk Domain
Supply Chain and Deployment
OWASP Top 10 for LLMs 2025
None mapped
Classification Reason
Matched keywords: ai

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1189 Drive-by Compromise Initial Access
Adversaries may gain access to a system through a user visiting a website over the normal course of browsing.
T1203 Exploitation for Client Execution Execution
Adversaries may exploit software vulnerabilities in client applications to execute code.
T1204.001 Malicious Link Execution
An adversary may rely upon a user clicking a malicious link in order to gain execution.
T1204.002 Malicious File Execution
An adversary may rely upon a user opening a malicious file in order to gain execution.
Why these techniques?

Vulnerability enables remote code execution without warning when users visit a malicious page (T1189, T1203, T1204.001) or open a malicious VBAI file (T1203, T1204.002).

CVEs Like This One

CVE-2025-2449Same vendor: Ni
CVE-2026-32862Same vendor: Ni
CVE-2026-32864Same vendor: Ni
CVE-2026-32861Same vendor: Ni
CVE-2026-32863Same vendor: Ni
CVE-2026-0955Same vendor: Ni
CVE-2026-32860Same vendor: Ni
CVE-2026-0957Same vendor: Ni
CVE-2026-0954Same vendor: Ni
CVE-2026-0956Same vendor: Ni

Affected Assets

ni
vision builder ai
2023

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly remediates the VBAI file processing flaw by applying vendor patches that add missing warnings or block dangerous script execution.

preventdetect

Deploys real-time malicious code scanning at file open points to detect and eradicate dangerous scripts in VBAI files before execution.

prevent

Validates VBAI file inputs to prevent processing of dangerous scripts without user warning.

References