216.73.216.197

CVE-2025-11786

· Published 02/12/2025 13:15 · Modified 03/12/2025 19:13

Labels: CVE-2025-11786 2025-12-02CVE-2025-11786CWE-121[email protected]

Essential information

Published
02/12/2025 13:15
Modified
03/12/2025 19:13
Author
Creator
CVSS
8.5 HIGH (v3) 8.5 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

Stack-based buffer overflow vulnerability in Circutor SGE-PLC1000/SGE-PLC50 v9.0.2. In the 'SetUserPassword()' function, the 'newPassword' parameter is directly embedded in a shell command string using 'sprintf()' without any sanitisation or validation, and then executed using 'system()'. This allows an attacker to inject arbitrary shell commands that will be executed with the same privileges as the application.

NVD status

Status
Analyzed — CVE has had analysis completed and all data associations made.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
circutor / sge-plc1000 firmware cpe:2.3:o:circutor:sge-plc1000_firmware:9.0.2:*:*:*:*:*:*:*
circutor / sge-plc1000 cpe:2.3:h:circutor:sge-plc1000:-:*:*:*:*:*:*:*
circutor / sge-plc50 firmware cpe:2.3:o:circutor:sge-plc50_firmware:9.0.2:*:*:*:*:*:*:*
circutor / sge-plc50 cpe:2.3:h:circutor:sge-plc50:-:*:*:*:*:*:*:*

References