CNNVD-202506-2809 Information
Jun 20, 2025
cve
CNNVD ID
CNNVD-202506-2809
Related CVE
- CNNVD Published: 2025-06-20
Description (Chinese)
sar2html是cemtan个人开发者的一个图标生成软件。 sar2html 3.2.2及之前版本存在安全漏洞,该漏洞源于未清理plot参数,可能导致OS命令注入攻击。
Description (English)
Sar2html is an icon-generated software for Cemtan personal developers. There is a security loophole in Sar2html 3.2.2 and earlier versions, which stems from uncleaned plot parameters, which could lead to an OS order being injected into the attack.
Hazard Level
Low
Vulnerability Type
其他
Affected Vendor
Live Support
Published
2025-06-20
Last Modified
2026-02-24
References
https://www.fortiguard.com/encyclopedia/ips/48624 https://github.com/cemtan/sar2html https://vulncheck.com/advisories/sar2html-command-injection https://www.exploit-db.com/exploits/47204 https://access.redhat.com/security/cve/cve-2025-34030
Patch
https://github.com/cemtan/sar2html/releases
Share on: