CVE-2025-7024
Published: 03 April 2026
Summary
CVE-2025-7024 is a medium-severity Incorrect Default Permissions (CWE-276) vulnerability in Airbus Tetra Connectivity Server. Its CVSS base score is 5.6 (Medium).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked at the 2.8th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 AC-6 (Least Privilege) and CM-6 (Configuration Settings).
Deeper analysis
CVE-2025-7024 is an Incorrect Default Permissions vulnerability (CWE-276) in the AIRBUS PSS TETRA Connectivity Server version 7.0 on Windows Server OS. The flaw stems from improper default permissions on a directory, enabling privilege abuse.
A local attacker with low privileges can exploit this issue by tricking or directing a user to place a crafted file into the vulnerable directory, leading to arbitrary code execution with SYSTEM privileges. The CVSS v3.1 base score of 7.3 (AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H) reflects low attack complexity and the need for user interaction, but high impacts on confidentiality, integrity, and availability upon success.
A vulnerability fix is available and has been delivered to impacted customers. Additional details on CWE-276 are available at https://cwe.mitre.org/data/definitions/276.html.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-209201
Vulnerability details
Incorrect Default Permissions vulnerability in AIRBUS PSS TETRA Connectivity Server on Windows Server OS allows Privilege Abuse. An attacker may execute arbitrary code with SYSTEM privileges if a user is tricked or directed to place a crafted file into the…
more
vulnerable directory. This issue affects TETRA connectivity Server: 7.0. Vulnerability fix is available and delivered to impacted customers.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Improper directory permissions (CWE-276) directly enable local low-privileged attacker to achieve SYSTEM-level arbitrary code execution via crafted file placement.
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Directly mitigates the CVE by identifying, reporting, and applying the available vulnerability fix that corrects the improper default directory permissions.
Mandates establishment of secure configuration settings, including restrictive directory permissions, to prevent low-privilege users from placing crafted files in the vulnerable directory.
Enforces the principle of least privilege to ensure low-privilege attackers cannot write files to directories executed with SYSTEM privileges, addressing the privilege abuse vector.