CVE-2025-62001 HIGH

CVE-2025-62001: BullWall Ransomware Containment hard-coded folder exclusions

Vendor Bullwall
Product Ransomware Containment
Weakness CWE-420
Published December 18, 2025
Last update January 15, 2026

CVSS base score

8.8/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

BullWall Ransomware Containment supports configurable file and directory exclusions such as '$RECYCLE.BIN' to balance monitoring scope and performance. Certain exclusion patterns could allow an authenticated attacker to rename directories in a way that avoids monitoring. Fixed in 4.6.1.14 and 5.0.0.42, which remove hardcoded exclusion behavior and exposes exclusion handling as configurable settings.

Key dates

02Disclosure timeline

December 18, 2025 CVE published
January 15, 2026 Record updated