CNNVD-202508-561 Information

CNNVD ID

CNNVD-202508-561

Related CVE

CVE-2025-22469

• CNNVD Published: 2025-08-06

Description (Chinese)

SATO CL4/6NX Plus和SATO CL4/6NX-J Plus都是日本SATO公司的一系列智能工业标签打印机。 SATO CL4/6NX Plus和SATO CL4/6NX-J Plus 1.15.5-r1之前版本存在操作系统命令注入漏洞，该漏洞源于可能执行任意OS命令，导致权限提升。

Description (English)

STO CL4/6NX Plus and STO CL4/6NX-J Plus are all smart industrial label printers of the Japanese company STO. The previous version of STO CL4/6NX Plus and STO CL4/6NX-J Plus 1.15.5-r1 contains a loophole in the operating system commands, which stems from the possibility of carrying out an arbitrary OS command, leading to an increase in authority.

Hazard Level

Medium

Vulnerability Type

操作系统命令注入

Affected Vendor

SATO

Published

2025-08-06

Last Modified

2026-02-24

References

https://jvn.jp/en/jp/JVN16547726/ https://www.sato-global.com/support_notices/240830/

Patch

https://www.sato-global.com/support_notices/240830/