CVE-2025-15559 — CRITICAL (9.8)

Q: How severe is CVE-2025-15559?

CVE-2025-15559 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Q: Is there a patch for CVE-2025-15559?

Check the references section above for vendor advisories and patch information. Affected products include: Nestersoft Worktime.

Vulnerability Description

An unauthenticated attacker can inject OS commands when calling a server API endpoint in NesterSoft WorkTime. The server API call to generate and download the WorkTime client from the WorkTime server is vulnerable in the “guid” parameter. This allows an attacker to execute arbitrary commands on the WorkTime server as NT Authority\SYSTEM with the highest privileges. Attackers are able to access or manipulate sensitive data and take over the whole server.

CVSS Score

9.8

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Nestersoft	Worktime	<= 11.8.8

Related Weaknesses (CWE)

CWE-78

References

https://r.sec-consult.com/worktimeThird Party Advisory

FAQ

What is CVE-2025-15559?

CVE-2025-15559 is a vulnerability with a CVSS score of 9.8 (CRITICAL). An unauthenticated attacker can inject OS commands when calling a server API endpoint in NesterSoft WorkTime. The server API call to generate and download the WorkTime client from the WorkTime server ...

How severe is CVE-2025-15559?

CVE-2025-15559 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2025-15559?

Check the references section above for vendor advisories and patch information. Affected products include: Nestersoft Worktime.