CVE-2025-3626 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A remote attacker with administrator account can gain full control of the device due to improper neutralization of special elements used in an OS Command ('OS C…
Critical CVSS: 9.1

CVE-2025-3626

A remote attacker with administrator account can gain full control of the device due to improper neutralization of special elements used in an OS Command ('OS Command Injection') while uploading a config file via webUI.
Vendor
-
Product
-
CWE
CWE-78
Yayın Tarihi
2025-07-07 10:15:27
Güncelleme
2025-07-08 16:18:34
Source Identifier
info@cert.vde.com
KEV Date Added
-

Kategoriler

CWE-78 CRITICAL 2025

Referanslar

https://certvde.com/en/advisories/VDE-2025-030