Ghostwire

CVE-2025-13926: An attacker could use data obtained by sniffing the network traffic to forge packets in order to make arbitrary...

MEDIUM CVSS 5.0 EPSS 0.07%

Published: April 9, 2026 | Last Modified: April 12, 2026

Description

An attacker could use data obtained by sniffing the network traffic to forge packets in order to make arbitrary requests to Contemporary Controls BASC 20T.

Ghostwire Analysis — What This Means Practically

Exploitation Probability (EPSS): Low — 0.07% (22th percentile)

Low exploitation probability based on current threat landscape data. Standard patching timeline is appropriate.

Medium CVSS score indicates moderate risk — exploitation requires specific conditions or results in limited impact.

This analysis is generated by Ghostwire from NVD, CISA KEV, EPSS, and open-source intelligence data. Verify findings through primary sources before acting.

Security Coverage (2 articles)

References

www.cnnvd.org.cn/home/globalSearch?keyword=CVE-2025-13926
www.tenable.com/cve/CVE-2025-13926
github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-099-01.jso
www.ccontrols.com/support/contacttech.htm
www.cisa.gov/news-events/ics-advisories/icsa-26-099-01
nvd.nist.gov/vuln/detail/CVE-2025-13926