CVE-2025-61611

High

Published: 09 March 2026

Published

09 March 2026

Modified

09 March 2026

KEV Added

—

Patch

—

CVSS Score 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS Score 0.0012 31.0th percentile

Risk Priority 15 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2025-61611 is a high-severity Improper Input Validation (CWE-20) vulnerability in Linuxfoundation Yocto. Its CVSS base score is 7.5 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Application or System Exploitation (T1499.004); ranked at the 31.0th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

Threat & Defense at a Glance

What attackers do: exploitation maps to Application or System Exploitation (T1499.004).

Threat & Defense Details

Likely Mitigating ControlsAI

Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.

PM-14 Testing, Training, and Monitoring

addresses: CWE-20

Security testing and developer training directly verify and enforce proper input validation, reducing exploitability of injection and malformed-data weaknesses.

SA-11 Developer Testing and Evaluation

addresses: CWE-20

Security testing and evaluation at multiple SDLC stages directly detects missing or flawed input validation, with the required remediation process ensuring fixes are applied.

SI-10 Information Input Validation

addresses: CWE-20

Directly implements checks on information inputs to reject invalid data before processing.

SI-8 Spam Protection

addresses: CWE-20

Spam protection mechanisms perform filtering and detection on inbound/outbound messages, directly compensating for missing or weak input validation of unsolicited content.

MITRE ATT&CK Enterprise TechniquesAI

T1499.004 Application or System Exploitation Impact

Adversaries may exploit software vulnerabilities that can cause an application or system to crash and deny availability to users.

attack.mitre.org →

Why these techniques?

Improper input validation in modem enables remote unauthenticated exploitation causing endpoint DoS (availability impact only).

Confidence: HIGH · MITRE ATT&CK Enterprise v18.1

NVD Description

In modem, there is a possible improper input validation. This could lead to remote denial of service with no additional execution privileges needed..

Deeper analysisAI

CVE-2025-61611 is an improper input validation vulnerability in the modem component, as described in its NVD entry published on 2026-03-09. The flaw, mapped to CWE-20 (Improper Input Validation) and noted with NVD-CWE-noinfo, carries a CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H). It affects modem implementations, with a vendor advisory published by Unisoc.

The vulnerability enables a remote denial of service attack with no additional execution privileges required. An unauthenticated attacker on the network can exploit it with low attack complexity and no user interaction, achieving high impact on system availability while causing no impact to confidentiality or integrity.

Mitigation details are available in the Unisoc security announcement at https://www.unisoc.com/en/support/announcement/2030931350138310657.

Details

CWE(s): NVD-CWE-noinfo CWE-20

Affected Products

linuxfoundation

yocto

all versions

CVEs Like This One

CVE-2026-33218Same vendor: Linuxfoundation

CVE-2025-68134Same vendor: Linuxfoundation

CVE-2025-61614Same vendor: Unisoc

CVE-2025-69278Same vendor: Unisoc

CVE-2025-61612Same vendor: Unisoc

CVE-2025-61615Same vendor: Unisoc

CVE-2025-69279Same vendor: Unisoc

CVE-2025-61616Same vendor: Unisoc

CVE-2025-61613Same vendor: Unisoc

CVE-2026-27623Shared CWE-20

References

https://www.unisoc.com/en/support/announcement/2030931350138310657
Vendor Advisory · security@unisoc.com