CVE-2025-50753

High CVSS: 8.4

Mitrastar GPT-2741GNAC-N2 devices are provided with access through ssh into a restricted default shell.The command "deviceinfo show file" is supposed to be used from restricted shell to show files and directories. By providing " /bin/sh" (quotes included) to the argument of this command will drop a root shell.

Vendor

Product

CWE

CWE-250

Yayın Tarihi

2025-08-26 14:15:38

Güncelleme

2025-08-29 16:22:31

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-250 HIGH 2025

Referanslar

http://gpt-2741gnac-n2.com http://mitrastar.com https://gist.github.com/geraldog/2d07fdedbbb79d822e9df4b75f882a63