Every CVE whose affected-product data names Mirion Biodose/nmis, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2025-64298 — CVSS 8.4 (high): NMIS/BioDose V22.02 and previous version installations where the embedded Microsoft SQLServer Express is used are exposed in the Windows…
CVE-2025-61940 — CVSS 8.3 (high): NMIS/BioDose V22.02 and previous versions rely on a common SQL Server user account to access data in the database. User access in the…
CVE-2025-62575 — CVSS 8.3 (high): NMIS/BioDose V22.02 and previous versions rely on a Microsoft SQL Server database. The SQL user account 'nmdbuser' and other created…
CVE-2025-64642 — CVSS 8.0 (high): NMIS/BioDose V22.02 and previous versions' installation directory paths by default have insecure file permissions, which in certain…
CVE-2025-64778 — CVSS 7.3 (high): NMIS/BioDose software V22.02 and previous versions contain executable binaries with plain text hard-coded passwords. These hard-coded…