CVE-2025-61945 is a critical security vulnerability identified in Radiometrics VizAir, a system used for weather monitoring and forecasting, particularly in aviation contexts. The vulnerability arises from a missing authentication mechanism (CWE-306) on the admin panel of the VizAir system, allowing any remote attacker to gain unauthorized access without credentials. Once inside the admin interface, the attacker can alter critical weather parameters such as wind shear alerts, inversion depth, and Convective Available Potential Energy (CAPE) values. These parameters are essential for accurate weather forecasting and directly impact flight safety by informing pilots and air traffic controllers about hazardous conditions. Manipulating these values can disable vital alerts, leading to unsafe flight conditions, and can also affect runway assignments, increasing the risk of mid-air collisions or runway incursions. The vulnerability is remotely exploitable over the network without any authentication or user interaction, making it highly dangerous. The CVSS 4.0 score of 10.0 reflects the highest severity, with high impact on confidentiality, integrity, and availability of the system. No patches or mitigations have been published yet, and while no exploits are currently known in the wild, the potential for severe consequences in aviation safety is significant. The vulnerability was published on November 4, 2025, and is tracked under CWE-306 (Missing Authentication for Critical Function).

For European organizations, especially those involved in aviation, meteorology, and air traffic control, this vulnerability poses a severe risk. Unauthorized manipulation of weather data and alerts can lead to incorrect flight decisions, increasing the likelihood of accidents, runway incursions, and mid-air collisions. The integrity and availability of critical weather information are compromised, potentially endangering passenger safety and causing operational disruptions. Aviation authorities and airports relying on VizAir for weather monitoring could face regulatory scrutiny and liability issues if exploited. Additionally, disruption of accurate weather forecasting can affect broader public safety and emergency response efforts. The potential cascading effects on air traffic management and airport operations could result in significant economic and reputational damage across European aviation sectors.

Given the absence of an official patch, European organizations should immediately implement network-level access controls to restrict access to the VizAir admin panel. This includes isolating the system within a secure network segment, applying strict firewall rules, and using VPNs or zero-trust network access solutions to limit exposure. Continuous monitoring and logging of all access attempts to the admin interface should be established to detect unauthorized activity promptly. Organizations should conduct thorough audits of current configurations and remove any unnecessary remote access capabilities. Where possible, implement compensating controls such as multi-factor authentication proxies or web application firewalls (WAFs) to enforce authentication externally. Coordination with Radiometrics for timely updates and patches is critical, and organizations should prepare for rapid deployment once available. Additionally, contingency plans for manual verification of weather data and alerts should be developed to mitigate risks during the vulnerability window.