CNNVD-202506-3019 Information

CNNVD ID

CNNVD-202506-3019

Related CVE

CVE-2025-34033

• CNNVD Published: 2025-06-24

Description (Chinese)

5V Technologies Blue Angel Software Suite是中国台湾5V Technologies公司的一款部署在嵌入式Linux设备的管理与控制软件套件。 5V Technologies Blue Angel Software Suite存在操作系统命令注入漏洞，该漏洞源于webctrl.cgi脚本中ping_addr参数未清理导致OS命令注入攻击。

Description (English)

5V Technologies Blue Angel Software Suite is a management and control software package deployed in embedded Linux equipment in Taiwan, China. 5V Technologies Blue Angel Software Suite has an operational system command leak that originated from the failure to clear the ping addr parameters in the webctrl.cgi script that led to the OS command injection attack.

Hazard Level

Medium

Vulnerability Type

操作系统命令注入

Affected Vendor

5V Technologies

Published

2025-06-24

Last Modified

2026-02-24

References

https://www.exploit-db.com/exploits/46792 https://www.exploit-db.com/raw/46792 https://vulncheck.com/advisories/5vtechnologies-blue-angel-command-injection https://access.redhat.com/security/cve/cve-2025-34033