{"vulnerability": "CVE-2025-1449", "sightings": [{"uuid": "a9559533-715f-4712-862d-fdcf7dd50c36", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1449", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114258048733334241", "content": "", "creation_timestamp": "2025-03-31T16:44:25.104715Z"}, {"uuid": "40af7107-e5dc-4b8b-a8e3-e1bedbf4197b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1449", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114258048733334241", "content": "", "creation_timestamp": "2025-03-31T16:44:25.102459Z"}, {"uuid": "972d79d3-7034-4ca2-80a0-1032f8399065", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1449", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-084-02", "content": "", "creation_timestamp": "2025-03-25T11:00:00.000000Z"}, {"uuid": "0a42318a-51d3-4e99-9a91-db5edb079c08", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-14492", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-1172/", "content": "", "creation_timestamp": "2025-12-19T05:00:00.000000Z"}, {"uuid": "bdc230fd-ab27-4797-aa6c-d6c528d084e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-14498", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-1070/", "content": "", "creation_timestamp": "2025-12-10T05:00:00.000000Z"}, {"uuid": "1201b026-50d7-4e0c-9479-331424714d0b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-14499", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-1071/", "content": "", "creation_timestamp": "2025-12-10T05:00:00.000000Z"}, {"uuid": "47c8952b-18ed-4be4-92cb-6b12f42e90fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-14496", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-1171/", "content": "", "creation_timestamp": "2025-12-19T05:00:00.000000Z"}, {"uuid": "768f9254-e002-489b-99b7-cbe1ef906ad8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-14493", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-1170/", "content": "", "creation_timestamp": "2025-12-19T05:00:00.000000Z"}, {"uuid": "c7142bbd-1690-4b64-98f1-2eaa9910bb7e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-14495", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-1169/", "content": "", "creation_timestamp": "2025-12-19T05:00:00.000000Z"}, {"uuid": "1aa97b66-c4b2-49cf-a5a3-05da803890cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-14497", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-1168/", "content": "", "creation_timestamp": "2025-12-19T05:00:00.000000Z"}, {"uuid": "14dbd9d8-c933-4a03-ac61-fc51f500d485", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-14490", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-1166/", "content": "", "creation_timestamp": "2025-12-19T05:00:00.000000Z"}, {"uuid": "b5c6c4ec-4203-4542-8a5d-7d6ce0a2e4d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-14491", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-1164/", "content": "", "creation_timestamp": "2025-12-19T05:00:00.000000Z"}, {"uuid": "91ddcd60-bb02-448e-a607-0fc07cfcdc82", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-14494", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-1163/", "content": "", "creation_timestamp": "2025-12-19T05:00:00.000000Z"}, {"uuid": "c071323d-2b35-47ef-8e4e-3b7c64b8f3c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1449", "type": "seen", "source": "https://t.me/cvedetector/21625", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-1449 - Rockwell Automation Verve Asset Manager Remote Command Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-1449 \nPublished : March 31, 2025, 4:15 p.m. | 48\u00a0minutes ago \nDescription : A vulnerability exists in the Rockwell Automation Verve Asset Manager due to insufficient variable sanitizing. A portion of the administrative web interface for Verve's Legacy Agentless Device Inventory (ADI) capability (deprecated since the 1.36 release) allows users to change a variable with inadequate sanitizing. If exploited, it could allow a threat actor with administrative access to run arbitrary commands in the context of the container running the service. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"31 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-31T19:12:34.000000Z"}, {"uuid": "d4a8c2b1-f21c-48b5-9bb8-ab2910207d08", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-14499", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3maota6xxlo2p", "content": "", "creation_timestamp": "2025-12-23T22:45:20.888670Z"}, {"uuid": "95f00110-0119-4c72-83e4-f08a340ba4f7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-14499", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3map3fhij5f2q", "content": "", "creation_timestamp": "2025-12-24T01:11:26.598131Z"}, {"uuid": "11748bbb-0f28-4098-a3e7-2e0e6a1d95b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1449", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/9701", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-1449\n\ud83d\udd25 CVSS Score: 7.5 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: A vulnerability exists in the Rockwell Automation Verve Asset Manager due to insufficient variable sanitizing. A portion of the administrative web interface for Verve's Legacy Agentless Device Inventory (ADI) capability (deprecated since the 1.36 release) allows users to change a variable with inadequate sanitizing. If exploited, it could allow a threat actor with administrative access to run arbitrary commands in the context of the container running the service.\n\ud83d\udccf Published: 2025-03-31T16:00:56.951Z\n\ud83d\udccf Modified: 2025-03-31T16:00:56.951Z\n\ud83d\udd17 References:\n1. https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1723.html", "creation_timestamp": "2025-03-31T16:33:27.000000Z"}]}