CVE-2025-14096

Summary

A vulnerability exists in multiple Radiometer products that allow an attacker with physical access to the analyzer possibility to extract credential information. The vulnerability is due to a weakness in the design and insufficient credential protection in operating system.

Other related CVE's are CVE-2025-14095 & CVE-2025-14097.

Affected customers have been informed about this vulnerability. This CVE is being published to provide transparency.

Required Configuration for Exposure:

Attacker requires physical access to the analyzer.

Temporary work Around: Only authorized people can physically access the analyzer.

Permanent solution: Local Radiometer representatives will contact all affected customers to discuss a permanent solution.

Exploit Status:

Researchers have provided a working proof-of-concept (PoC). Radiometer is not aware of any public exploit code at the time of this publication.

Affected Software

VendorProductVersion RangeStatus
Radiometer Medical ApsABL90 FLEX and ABL90 FLEX PLUS AnalyzersWindows 7 Operating systemaffected
Radiometer Medical ApsABL90 FLEX and ABL90 FLEX PLUS AnalyzersWindows XP Operating systemaffected
Radiometer Medical ApsAQT90 FLEX AnalyzersWindows 7 Operating systemaffected
Radiometer Medical ApsAQT90 FLEX AnalyzersWindows XP Operating systemaffected
Radiometer Medical ApsABL800 BASIC and ABL800 FLEX analyzersWindows 7 Operating systemaffected
Radiometer Medical ApsABL800 BASIC and ABL800 FLEX analyzersWindows XP Operating systemaffected

Weaknesses

  • CWE-798: CWE-798: Use of Hard-coded Credentials
  • CWE-250: CWE-250: Execution with Unnecessary Privileges

Workarounds

Only authorized people can physically access the analyzer.

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References