CVE-2025-65791 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

ZoneMinder v1.36.34 is vulnerable to Command Injection in web/views/image.php. The application passes unsanitized user input directly to the exec() function. NO…
Critical CVSS: 9.8

CVE-2025-65791

ZoneMinder v1.36.34 is vulnerable to Command Injection in web/views/image.php. The application passes unsanitized user input directly to the exec() function. NOTE: this is disputed by the Supplier because there is no unsanitized user input to web/views/image.php.
Vendor
Zoneminder
Product
Zoneminder
CWE
CWE-78
Yayın Tarihi
2026-02-18 16:22:29
Güncelleme
2026-03-11 04:17:33
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-78 Zoneminder CRITICAL Zoneminder 2026

Referanslar

https://github.com/rishavand1/CVE-2025-65791