CVE-2025-0676

Commend Injection Leading to Privilege Escalation

CVSS 8.6 HIGHEPSS 1.0%CWE-78

Vexday Risk Score

21Bajo

Decisión SSVC (CISA)

Track

Sin señal de explotación → monitorear

CVSS 8.6EPSS 1.0%KEV nãoPoC —Nuclei —Metasploit —Patch referenciado

Ciclo de vida

02 abr 2025Publicada en NVD

Recomendación: Monitorear — sin señal de explotación por ahora.

This vulnerability involves command injection in tcpdump within Moxa products, enabling an authenticated attacker with console access to exploit improper input validation to inject and execute systems commands. Successful exploitation could result in privilege escalation, allowing the attacker to gain root shell access and maintain persistent control over the device, potentially disrupting network services and affecting the availability of downstream systems that rely on its connectivity.

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Productos afectados

Moxa · EDF-G1002-BP Series Moxa · EDR-8010 Series Moxa · EDR-810 Series Moxa · EDR-G9004 Series Moxa · EDR-G9010 Series Moxa · NAT-102 Series Moxa · OnCell G4302-LTE4 Series Moxa · TN-4900 Series

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://www.moxa.com/en/support/product-support/security-advisory/mpsa-259491-cve-2025-0676-command-injection-leading-to-privilege-escalation