CVE-2025-9494

216.73.217.22

· Published 23/09/2025 02:15 · Modified 24/09/2025 18:11

Labels: CVE-2025-9494 2025-09-23 CVE-2025-9494 CWE-78 [email protected]

Essential information

Published: 23/09/2025 02:15
Modified: 24/09/2025 18:11
Author: —
Creator: —
CVSS: 8.5 HIGH (v3) 8.5 HIGH (v4.0)
CISA KEV: No
CWE: —
CVSS vector: —

CVSS metrics

Description

An OS command injection vulnerability has been discovered in the Vitogate 300, which can be exploited by malicious users to compromise affected installations. Specifically, the `/cgi-bin/vitogate.cgi` endpoint is affected, when the `form` JSON parameter is set to `form-0-2`. The vulnerability stems from the fact that that function at offset 0x21c24 does not properly sanitize supplied input before interpolating it into a format string which gets passed to `popen()`. Consequently, an authenticated attacker is able to inject arbitrary OS commands and thus gain code execution on affected devices.

NVD status

Status: Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source: [email protected]
NVD: View on NVD

Affected products (CPE)

Product	CPE
carrier / vitogate 300	`cpe:2.3:a:carrier:vitogate_300::::::::`