Cyber Resilience

CVE-2025-61611

High

Published: 09 March 2026

Published
09 March 2026
Modified
09 March 2026
KEV Added
Patch
CVSS Score v3.1 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score 0.0013 32.1th percentile
Risk Priority 15 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2025-61611 is a high-severity Improper Input Validation (CWE-20) vulnerability in Linuxfoundation Yocto. Its CVSS base score is 7.5 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Application or System Exploitation (T1499.004); ranked at the 32.1th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 SC-5 (Denial-of-service Protection) and SI-10 (Information Input Validation).

Deeper analysis

CVE-2025-61611 is an improper input validation vulnerability in the modem component, as described in its NVD entry published on 2026-03-09. The flaw, mapped to CWE-20 (Improper Input Validation) and noted with NVD-CWE-noinfo, carries a CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H). It affects modem implementations, with a vendor advisory published by Unisoc.

The vulnerability enables a remote denial of service attack with no additional execution privileges required. An unauthenticated attacker on the network can exploit it with low attack complexity and no user interaction, achieving high impact on system availability while causing no impact to confidentiality or integrity.

Mitigation details are available in the Unisoc security announcement at https://www.unisoc.com/en/support/announcement/2030931350138310657.

EU & UK References

Vulnerability details

In modem, there is a possible improper input validation. This could lead to remote denial of service with no additional execution privileges needed..

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1499.004 Application or System Exploitation Impact
Adversaries may exploit software vulnerabilities that can cause an application or system to crash and deny availability to users.
Why these techniques?

Improper input validation in modem enables remote unauthenticated exploitation causing endpoint DoS (availability impact only).

Confidence: HIGH · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2026-33218Same vendor: Linuxfoundation
CVE-2025-68134Same vendor: Linuxfoundation
CVE-2025-61616Same vendor: Unisoc
CVE-2025-69278Same vendor: Unisoc
CVE-2025-61613Same vendor: Unisoc
CVE-2025-69279Same vendor: Unisoc
CVE-2025-61614Same vendor: Unisoc
CVE-2025-61612Same vendor: Unisoc
CVE-2025-61615Same vendor: Unisoc
CVE-2026-22862Shared CWE-20

Affected Assets

linuxfoundation
yocto
all versions

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly enforces proper validation of inputs to the modem component, preventing exploitation of the improper input validation vulnerability leading to remote DoS.

prevent

Provides denial-of-service protection mechanisms that limit the impact of remote unauthenticated attacks exploiting the modem vulnerability to disrupt system availability.

prevent

Requires timely identification, reporting, and remediation of the specific flaw in the modem, addressing the published CVE through patching or compensating controls.

References