CVE-2025-62002 MEDIUM

CVE-2025-62002: BullWall Ransomware Containment file count detection bypass

Vendor Bullwall
Product Ransomware Containment
Weakness CWE-358
Published December 18, 2025
Last update January 15, 2026

CVSS base score

4.3/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality None
Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

What the vulnerability does

01Description

BullWall Ransomware Containment considers the number of files modified to trigger detection. An authenticated attacker could encrypt a single (possibly large) file without triggering detection if thresholds are configured to require multiple file changes. The number of files to trigger detection can be configured by the user. Versions 4.6.0.0, 4.6.0.6, 4.6.0.7, and 4.6.1.4 are affected. Other versions may also be affected.

Key dates

02Disclosure timeline

December 18, 2025 CVE published
January 15, 2026 Record updated