CVE-2025-61932 - Motex LANSCOPE Endpoint Manager Improper Verification of Source of a Communication Channel Vulnerability

Vulnerability Name

Motex LANSCOPE Endpoint Manager Improper Verification of Source of a Communication Channel Vulnerability

Description

Motex LANSCOPE Endpoint Manager contains an improper verification of source of a communication channel vulnerability allowing an attacker to execute arbitrary code by sending specially crafted packets.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Additional Notes

https://www.motex.co.jp/news/notice/2025/release251020/

https://nvd.nist.gov/vuln/detail/CVE-2025-61932

Related News Articles

China-linked hackers exploited Lanscope flaw as a zero-day in attacksNovember 1, 2025

China-Linked Tick Group Exploits Lanscope Zero-Day to Hijack Corporate SystemsOctober 31, 2025

CISA warns of Lanscope Endpoint Manager flaw exploited in attacksOctober 24, 2025

Critical Lanscope Endpoint Manager Bug Exploited in Ongoing Cyberattacks, CISA ConfirmsOctober 23, 2025