CVE-2025-62001

HIGH8.7

Description

BullWall Ransomware Containment supports configurable file and directory exclusions such as '$RECYCLE.BIN' to balance monitoring scope and performance. Certain exclusion patterns could allow an authenticated attacker to rename directories in a way that avoids monitoring. Fixed in 4.6.1.14 and 5.0.0.42, which remove hardcoded exclusion behavior and exposes exclusion handling as configurable settings.

CVSS breakdown

CVSS 4.0

Attack Vector

Network

Attack Complexity

Low

Attack Requirements

None

Privileges Required

Low

User Interaction

None

Confidentiality (Vulnerable System)

High

Integrity (Vulnerable System)

High

Availability (Vulnerable System)

High

Confidentiality (Subsequent System)

None

Integrity (Subsequent System)

None

Availability (Subsequent System)

None

CVSS 3.1

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Affected products

BullWall / Ransomware Containment4.6.0.0 – 4.6.1.14
BullWall / Ransomware Containment4.6.0.0 – 5.0.0.42
BullWall / Ransomware Containment4.6.1.14 – 4.6.1.14
BullWall / Ransomware Containment5.0.0.42 – 5.0.0.42

CVE-2025-62001

Description

CVSS breakdown

Affected products

References