CVE-2025-25735 | Kapsch TrafficCom RIS-9160/TrafficCom RIS-9260 3.2.0.829.23/3.8.0.1119.42/4.6.0.1211.28 SPI Protected Range Register security-sensitive hardware controls with missing lock bit protection (EUVD-2025-25797)
A vulnerability was found in Kapsch TrafficCom RIS-9160 and TrafficCom RIS-9260 3.2.0.829.23/3.8.0.1119.42/4.6.0.1211.28. It has been declared as problematic. Affected by this issue is some unknown functionality of the component SPI Protected Range Register Handler. The manipulation results in security-sensitive hardware controls with missing lock bit protection.
This vulnerability is reported as CVE-2025-25735. The attack requires a local approach. No exploit exists.