Raisecomm’s Security Snafu: Remote Access Blunder Leaves Devices Vulnerable!

Raisecomm’s RAX701-GC devices have a security flaw that lets remote attackers bypass authentication and gain root access. The vulnerability, with a CVSS v4 score of 9.3, allows SSH sessions without credentials. Raisecomm hasn’t responded to mitigation requests. Stay safe by securing your network and using updated VPNs. View CSAF for more details.

1P
Published: October 21, 2025 4:20 pmAdded: October 21, 2025 at 9:55 amAssembled by: The Editor
Pro Dashboard

Hot Take:

When your firmware is as solid as a wet noodle, even the best hackers won’t need to break a sweat. Raisecomm’s devices have turned into welcome mats for cyber bandits who can now waltz in through the front door, bypassing authentication like it’s a velvet rope at a VIP club. Time to patch up that hole, Raisecomm, or your devices might just end up being the talk of the hacker town!

Key Points:

– Raisecomm devices are vulnerable to authentication bypass.
– CVE-2025-11534 has a CVSS v4 score of 9.3: Highly severe.
– Vulnerability allows attackers remote root shell access.
– Raisecomm hasn’t cooperated with CISA to mitigate the issue.
– CISA provides mitigation strategies, but no public exploit reported yet.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?