CNNVD-202507-2034 Information
CNNVD ID
CNNVD-202507-2034
Related CVE
- CNNVD Published: 2025-07-15
Description (Chinese)
ITRS Group OP5 Monitor是英国ITRS Group公司的一个用于服务器,基于开源项目 Naemon 的网络监视和管理的软件产品。 ITRS Group OP5 Monitor 7.1.9及之前版本存在安全漏洞,该漏洞源于cmd_str参数输入验证不当,可能导致命令注入。
Description (English)
ITRS Group OP5 Monitor is a software product for server use by British ITRS Group based on network surveillance and management of the Open Source Project Naemon. ITRS Group OP5 Monitor 7.1.9 and previous versions contain a security loophole, which stems from inappropriate input validation of cmd str parameters, which may lead to command injection.
Hazard Level
Low
Vulnerability Type
其他
Affected Vendor
ITSS
Published
2025-07-15
Last Modified
2026-02-24
References
https://www.exploit-db.com/exploits/39676 https://www.itrsgroup.com/products/network-monitoring-op5-monitor https://www.vulncheck.com/advisories/op5-monitor-authenticated-command-execution https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/linux/ https://nvd.nist.gov/vuln/detail/CVE-2025-34115
Patch
https://resources.itrsgroup.com/downloads
Share on: