CVE-2025-1265
Elseta Vinci Protocol Analyzer OS Command Injection
Vexday Risk Score
28Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 9.4EPSS 1.3%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
20 Feb 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
An OS command injection vulnerability exists in Vinci Protocol Analyzer that could allow an attacker to escalate privileges and perform code execution on affected system.
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
Affected products
Elseta · Vinci Protocol Analyzer