CNNVD-202507-3275 Information

CNNVD ID

CNNVD-202507-3275

Related CVE

CVE-2014-125118

• CNNVD Published: 2025-07-25

Description (Chinese)

eScan Web Management Console是印度eScan公司的一个控制面板软件。 eScan Web Management Console 5.5-2版本存在安全漏洞，该漏洞源于pass参数未正确清理，可能导致命令注入和远程代码执行。

Description (English)

eScan Web Management Console is a control panel software for eScan India. There is a security loophole in eScan Web Management Consortium version 5.5-2, which stems from the incorrect clean-up of pass parameters, which may lead to command injection and remote code execution.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

eScan

Published

2025-07-25

Last Modified

2026-02-24

References

https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/linux/antivirus/escan_password_exec.rb https://www.exploit-db.com/exploits/32869 https://www.vulncheck.com/advisories/escan-web-management-console-command-injection https://access.redhat.com/security/cve/cve-2014-125118