CVE-2025-64126

Published
View on NVD ↗
CVSS v3
10
CRITICAL
CVSS v2
N/A
Affected
1
PROJECT

Description

An OS command injection vulnerability exists due to improper input validation. The application accepts a parameter directly from user input without verifying it is a valid IP address or filtering potentially malicious characters. This could allow an unauthenticated attacker to inject arbitrary commands.

cisagov/CSAF
cisagov/CSAF
CISA CSAF Security Advisories
GitHubGitHub
75