Threat Advisories - NVD Disclosed November 10, 2025

CVE-2025-12480

Triofox Improper Access Control Vulnerability

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

An improper access control flaw in Triofox may permit unauthorized access to initial setup pages, potentially exposing system configurations and leading to business risk.

NVD published: November 10, 2025 • CISA KEV