BELL-SA-2025:15: Liberica NIK vulnerabilities
Published: November 3, 2025Last modified: November 3, 2025
Description
Multiple security vulnerabilities were discovered in Liberica NIK product family. Please follow the instructions in the Solution section to make sure that your system includes all the necessary updates. Additional details for all the related CVEs are available at the links below.
Solution
The following components must be updated to versions listed below ("Fixed" column). For update instructions please refer to the installation guides of the latest versions of the components.
Liberica NIK 23.0.10+1 (JDK 17.0.17+12)
https://docs.bell-sw.com/liberica-nik/23.0.10b1-17.0.17b12/general/install-guide/
Liberica NIK 23.1.9+1 (JDK 21.0.9+12)
https://docs.bell-sw.com/liberica-nik/23.1.9b1-21.0.9b12/general/install-guide/
Liberica NIK 25.0.1+1 (JDK 25.0.1+12)
https://docs.bell-sw.com/liberica-nik/25.0.1b1-25.0.1b12/general/install-guide/
In general, it is sufficient to update all Liberica NIK instances in the system by installing the corresponding updated version of the product (23.0.10, 23.1.9, 25.0.1).
| Product | Release | Package | Version |
|---|---|---|---|
| Liberica NIK | 23 (JDK 17) | core | 23.0.10+1 |
| full | 23.0.10+1 | ||
| standard | 23.0.10+1 | ||
| 23 (JDK 21) | core | 23.1.9+1 | |
| full | 23.1.9+1 | ||
| standard | 23.1.9+1 | ||
| 25 (JDK 25) | full | 25.0.1+1 | |
| standard | 25.0.1+1 |