216.73.216.86

CVE-2025-11787

· Published 02/12/2025 13:15 · Modified 03/12/2025 19:16

Labels: CVE-2025-11787 2025-12-02CVE-2025-11787CWE-78[email protected]

Essential information

Published
02/12/2025 13:15
Modified
03/12/2025 19:16
Author
Creator
CVSS
8.5 HIGH (v3) 8.5 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

Command injection vulnerability in the operating system in Circutor SGE-PLC1000/SGE-PLC50 v9.0.2 through the 'GetDNS()', 'CheckPing()' and 'TraceRoute()' functions.

NVD status

Status
Analyzed — CVE has had analysis completed and all data associations made.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
circutor / sge-plc1000 firmware cpe:2.3:o:circutor:sge-plc1000_firmware:9.0.2:*:*:*:*:*:*:*
circutor / sge-plc1000 cpe:2.3:h:circutor:sge-plc1000:-:*:*:*:*:*:*:*
circutor / sge-plc50 firmware cpe:2.3:o:circutor:sge-plc50_firmware:9.0.2:*:*:*:*:*:*:*
circutor / sge-plc50 cpe:2.3:h:circutor:sge-plc50:-:*:*:*:*:*:*:*

References