exploitDog

CVE-2025-6225

Опубликовано: 07 янв. 2026

Источник: nvd

EPSS Низкий

Описание

Kieback&Peter Neutrino-GLT product is used for building management. It's web component "SM70 PHWEB" is vulnerable to shell command injection via login form. The injected commands would execute with low privileges. The vulnerability has been fixed in version 9.40.02

Ссылки

https://cert.pl/en/posts/2026/01/CVE-2025-6225/

EPSS

Процентиль: 81%

0.01522

Низкий

Дефекты

CWE-78

Связанные уязвимости

GHSA-3pxg-h8p3-7jfh

github

3 месяца назад

Kieback&Peter Neutrino-GLT product is used for building management. It's web component "SM70 PHWEB" is vulnerable to shell command injection via login form. The injected commands would execute with low privileges. The vulnerability has been fixed in version 9.40.02

EPSS

Процентиль: 81%

0.01522

Низкий

Дефекты

CWE-78