Over 800 N-able N-central servers remain vulnerable to two actively exploited security flaws, CVE-2025-8875 and CVE-2025-8876, despite patches being available. Federal agencies and system administrators are urged to upgrade to version 2025.3.1 to prevent further exploitation. #N-ableNcentral #CVE2025-8875 #CVE2025-8876 #BOD2201
Keypoints
- Over 800 N-able N-central servers are still unpatched and at risk of cyberattacks.
- The vulnerabilities allow command injection and insecure deserialization, exploited by hackers.
- N-able has released a patch in version 2025.3.1 and advises immediate upgrade.
- Shadowserver and other security agencies track nearly 2,000 exposed servers globally.
- U.S. federal agencies are mandated to apply patches within one week due to active exploitation.