← back
CVE-2025-1265

Elseta Vinci Protocol Analyzer OS Command Injection

CVSS 9.4 CRITICALEPSS 1.3%CWE-78
Vexday Risk Score
28Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 9.4EPSS 1.3%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
20 Feb 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
An OS command injection vulnerability exists in Vinci Protocol Analyzer that could allow an attacker to escalate privileges and perform code execution on affected system.
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H