CVE-2026-25817 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

HMS Networks Ewon Flexy with firmware before 15.0s4, Cosy+ with firmware 22.xx before 22.1s6, and Cosy+ with firmware 23.xx before 23.0s3 have improper neutrali…
High CVSS: 8.8

CVE-2026-25817

HMS Networks Ewon Flexy with firmware before 15.0s4, Cosy+ with firmware 22.xx before 22.1s6, and Cosy+ with firmware 23.xx before 23.0s3 have improper neutralization of special elements used in an OS command allowing remote code execution by attackers with low privilege access on the gateway, provided the attacker has credentials.
Vendor
-
Product
-
CWE
CWE-94
Yayın Tarihi
2026-03-13 19:54:25
Güncelleme
2026-03-16 14:54:11
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-94 HIGH 2026

Referanslar

https://hmsnetworks.blob.core.windows.net/nlw/docs/default-source/products/cybersecurity/security-advisory/hms-security-advisory-2026-03-09-001---ewon-several-flexy-and-cosy--vulnerabilities.pdf?sfvrsn=f7c027b8_13 https://www.hms-networks.com/p/flexy20500-00ma-ewon-flexy-205