ICSMA-25-336-01 · Published 2025-12-02 · View on CISA ICS-CERT ↗

Mirion Medical EC2 Software NMIS BioDose

CVSS 8.4 HIGH

Risk Summary

Successful exploitation of these vulnerabilities could allow an attacker to modify program executables, gain access to sensitive information, gain unauthorized access to the application, and execute arbitrary code.

CVEs (5)

CVE-2025-64642 CVE-2025-64298 CVE-2025-61940 CVE-2025-64778 CVE-2025-62575

Remediations

Mirion Medical recommends users update to V23.0 or later. Users with an active support contract should update to the latest version through the software or users can contact Mirion Medical support directly.

Affected Vendors

Mirion Medical

Affected Products (1)

Mirion Medical · EC2 Software NMIS BioDose <23.0

Affected Sectors

Healthcare and Public Health

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more