CNNVD-202509-138 Information
Sep 02, 2025
cve
CNNVD ID
CNNVD-202509-138
Related CVE
- CNNVD Published: 2025-09-02
Description (Chinese)
Anritsu ShockLine是日本Anritsu公司的一系列矢量网络分析仪。 Anritsu ShockLine存在路径遍历漏洞,该漏洞源于CHX文件解析路径验证不足,可能导致远程代码执行。
Description (English)
Anritsu ShockLine is a series of vector network analysers of Anritsu Japan. Anritsu ShockLine has a loophole in its path, which results from the inadequate verification of the CHX file resolution path, which may lead to remote code execution.
Hazard Level
Medium
Vulnerability Type
路径遍历
Affected Vendor
Anritsu
Published
2025-09-02
Last Modified
2026-02-24
References
https://www.zerodayinitiative.com/advisories/ZDI-25-647/ https://nvd.nist.gov/vuln/detail/CVE-2025-7975
Patch
https://www.anritsu.com/en-us/test-measurement/support/downloads/software/dwl18844
Share on: