CNNVD-202508-3075 Information

CNNVD ID

CNNVD-202508-3075

Related CVE

CVE-2025-50974

• CNNVD Published: 2025-08-26

Description (Chinese)

IPFire是IPFire组织的一种开源 Linux 发行版。主要用作路由器和防火墙。 IPFire 2.29版本存在安全漏洞，该漏洞源于logs.cgi未清理用户输入，可能导致执行任意OS命令。

Description (English)

IPFire is an open source for the organization Linux. Mainly used as routers and firewalls. The IPFire 2.29 version has a security loophole, which stems from the failure of logs.cgi to clean up user input and may lead to the execution of arbitrary OS orders.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

IPFire

Published

2025-08-26

Last Modified

2026-02-24

References

https://github.com/4rdr/proofs/blob/main/info/IPFire-2.29-Command-Injection.md https://nvd.nist.gov/vuln/detail/CVE-2025-50974