CVE-2025-1701 is a high-severity vulnerability in the MIM Admin service. An attacker could exploit this by sending specially crafted request over RMI interface to execute arbitrary code with privileges of The only accessible locally (listening on 127.0.0.1), limiting attack vector local machine. This means that properly configured hospital environment, an must have already compromised network and additionally system where service running. From there, attackers sufficient knowledge MIM's implementation, library usage, functionality access extend force run commands machine its privileges. Users Software products exposed via RDP or multi-user application virtualization should take note being environment hosting virtualized client. This issue affects Service: before 7.2.13, 7.3.8, 7.4.3