Description

A vulnerability exists in multiple Radiometer products that allow an attacker with physical access to the analyzer possibility to extract credential information. The vulnerability is due to a weakness in the design and insufficient credential protection in operating system. Other related CVE's are CVE-2025-14095 & CVE-2025-14097. Affected customers have been informed about this vulnerability. This CVE is being published to provide transparency. Required Configuration for Exposure: Attacker requires physical access to the analyzer. Temporary work Around: Only authorized people can physically access the analyzer. Permanent solution: Local Radiometer representatives will contact all affected customers to discuss a permanent solution. Exploit Status: Researchers have provided a working proof-of-concept (PoC). Radiometer is not aware of any public exploit code at the time of this publication.

INFO

Published Date :

2025-12-17T12:19:27.489Z

Last Modified :

2025-12-17T14:43:16.523Z

Source :

Radiometer
AFFECTED PRODUCTS

The following products are affected by CVE-2025-14096 vulnerability.

Vendors Products
Radiometer
  • Abl800 Basic Analyzer
  • Abl800 Flex Analyzer
  • Abl90 Flex Analyzer
  • Abl90 Flex Plus Analyzer
  • Aqt90 Flex Analyzer
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-14096.

URL Resource
https://www.radiometer.com/myradiometer cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact