CVE-2025-52365 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A command injection vulnerability in the szc script of the ccurtsinger/stabilizer repository allows remote attackers to execute arbitrary system commands via un…
High CVSS: 7.8

CVE-2025-52365

A command injection vulnerability in the szc script of the ccurtsinger/stabilizer repository allows remote attackers to execute arbitrary system commands via unsanitized user input passed to os.system(). The vulnerability arises from improper input handling where command-line arguments are directly concatenated into shell commands without validation
Vendor
-
Product
-
CWE
CWE-77
Yayın Tarihi
2026-03-03 15:16:15
Güncelleme
2026-03-03 21:52:29
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-77 HIGH 2026

Referanslar

https://github.com/ccurtsinger/stabilizer/ https://github.com/ccurtsinger/stabilizer/blob/master/szc https://github.com/h1dr1/CVE_Research/blob/main/CVE-2025-52365.md