CNNVD-202508-3447 Information

CNNVD ID

CNNVD-202508-3447

Related CVE

CVE-2025-54762

• CNNVD Published: 2025-08-28

Description (Chinese)

DOS & CO SS1是日本DOS & CO公司的一个资产管理工具。 DOS & CO SS1 16.0.0.10及之前版本存在代码问题漏洞，该漏洞源于允许远程未经验证攻击者上传任意文件并以SYSTEM权限执行OS命令。

Description (English)

DOS & CO SS1 is an asset management tool for DOS & CO in Japan. DOS & CO SS1 16.0.0.10 and previous versions had a code gap, which stemmed from allowing remote uncertified assailants to upload random documents and execute OS orders under SYSTEM ’ s authority.

Hazard Level

Low

Vulnerability Type

代码问题

Affected Vendor

DOS & CO

Published

2025-08-28

Last Modified

2026-02-24

References

https://www.dos-osaka.co.jp/news/2025/08/250827.html https://jvn.jp/en/jp/JVN99577552/ https://nvd.nist.gov/vuln/detail/CVE-2025-54762

Patch

https://www.dos-osaka.co.jp/news/2025/08/250827.html