216.73.217.64

CVE-2025-22469

· Published 06/08/2025 10:15 · Modified 06/08/2025 20:23

Labels: CVE-2025-22469 2025-08-06CVE-2025-22469CWE-78[email protected]

Essential information

Published
06/08/2025 10:15
Modified
06/08/2025 20:23
Author
Creator
CVSS
6.9 MEDIUM (v3) 6.9 MEDIUM (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

OS command injection vulnerability exists in CL4/6NX Plus and CL4/6NX-J Plus (Japan model) with the firmware versions prior to 1.15.5-r1. An arbitrary OS command may be executed on the system with a certain non-administrative user privilege.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
cl4 / cl4 6nx plus cpe:2.3:a:cl4:cl4_6nx_plus:<1.15.5-r1:*:*:*:*:*:*:*
cl4 / cl4 6nx j plus cpe:2.3:a:cl4:cl4_6nx_j_plus:<1.15.5-r1:*:*:*:*:*:*:*

References