exploitDog

CVE-2025-41699

Опубликовано: 14 окт. 2025

Источник: nvd

CVSS3: 8.8

EPSS Низкий

Описание

An low privileged remote attacker with an account for the Web-based management can change the system configuration to perform a command injection as root, resulting in a total loss of confidentiality, availability and integrity due to improper control of generation of code ('Code Injection').

Ссылки

https://phoenixcontact.csaf-tp.certvde.com/.well-known/csaf/white/2025/vde-2025-074.json

EPSS

Процентиль: 59%

0.00386

Низкий

8.8 High

CVSS3

Дефекты

CWE-94

Связанные уязвимости

GHSA-5whr-v2mg-4xrv

CVSS3: 8.8

github

4 месяца назад

An low privileged remote attacker with an account for the Web-based management can change the system configuration to perform a command injection as root, resulting in a total loss of confidentiality, availability and integrity due to improper control of generation of code ('Code Injection').

EPSS

Процентиль: 59%

0.00386

Низкий

8.8 High

CVSS3

Дефекты

CWE-94