CVE-2025-66644 - PatchNow

Data Source: CIRCL

Confidence: HIGH

Exploitation Method: DIRECT_NETWORK

CVE Published: 2025-12-05

Added to CISA KEV: 2025-12-08 3 DAYS BETWEEN CVE AND KEV

CRITICAL: Check for indicators of compromise - this vulnerability is actively exploited in the wild. Review logs for suspicious command execution, check for webshells, verify system integrity, and audit user accounts for unauthorized access
Immediately update ArrayOS AG to version 9.4.5.9 or later
Monitor VPN access logs for anomalous authentication patterns and command execution
Implement network segmentation to limit potential lateral movement if compromised
Consider temporarily restricting VPN access to essential users only until patching is complete
HIGHEST patch priority - critical infrastructure actively under attack

CVE-2025-66644 Security Vulnerability & Exploit Details
CVE-2025-66644: Array Networks ArrayOS AG before 9.4.5.9 allows command injection, as exploited in the wild in August through December 2025.
CVE-2025-66577 Security Vulnerability & Exploit Details
CVE-2025-66577 Vulnerability Analysis & Exploit Details.Join the top cybersecurity professionals safeguarding today's infrastructures. Other 5 Recently Published CVEs Vulnerabilities. CVE-2025-66644 – Array Networks ArrayOS AG before 9.4.5.9 allows command injection, as exploited in the wild in August through December 2025.
Vulnerability Summary for the Week of December 1, 2025
Vulnerabilities are based on the Common Vulnerabilities and Exposures (CVE) vulnerability ... CVE-2025-66644 · https://www.jpcert.or.jp/at/2025/ ...

🔴 CVE-2025-66644