Primary

Context

Newforma Info Exchange Unauthenticated Deserialization Vulnerability Allowing Arbitrary Code Execution

Vulnerability

A vulnerability in Newforma Info Exchange (NIX) allows remote, unauthenticated attackers to execute arbitrary code with 'NT AUTHORITY\NetworkService' privileges. This issue arises from the acceptance of serialized .NET data via the '/remoteweb/remote.rem' endpoint. The vulnerability is present in Newforma Project Center Server (NPCS) environments, where a compromised NIX system can be used to attack an associated NPCS system.

Impact

Exploitation of this vulnerability allows for arbitrary code execution on the affected system, with the executed code running under the 'NT AUTHORITY\NetworkService' account.

Remediation

To mitigate this vulnerability, restrict network access to the '/remoteweb/remote.rem' endpoint, for example using the IIS URL Rewrite Module.

Added: Oct 9, 2025, 9:34 PM

Updated: Oct 9, 2025, 9:34 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

7.4

remediation

0.0

relevance

0.7

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

7.4

remediation

0.0

relevance

0.7

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Newforma Info Exchange Unauthenticated Deserialization Vulnerability Allowing Arbitrary Code Execution

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating