216.73.217.19

CVE-2025-4678

· Published 10/06/2025 16:15 · Modified 10/06/2025 16:15

Labels: CVE-2025-4678 2025-06-10CVE-2025-4678CWE-77[email protected]

Essential information

Published
10/06/2025 16:15
Modified
10/06/2025 16:15
Author
Creator
CVSS
7.0 HIGH (v3) 7.0 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

Improper Neutralization of Special Elements in the chromium_path variable may allow OS command injection. This issue affects Pandora ITSM 5.0.105.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
pandorafms / pandora itsm cpe:2.3:a:pandorafms:pandora_itsm:5.0.105:*:*:*:*:*:*:*

References