CNNVD-202510-2494 Information
Oct 17, 2025
cve
CNNVD ID
CNNVD-202510-2494
Related CVE
- CNNVD Published: 2025-10-17
Description (Chinese)
HGiga iSherlock是中国恒基(HGiga)公司的一系列软件产品。 HGiga iSherlock存在操作系统命令注入漏洞,该漏洞源于未经验证的远程攻击者可注入任意OS命令并在服务器上执行,可能导致远程命令执行。
Description (English)
HGiga iSherlock is a series of software products from HGiga, China. HGiga iSherlock has an operational system command leak, which stems from the fact that uncertified remote assailants can inject random OS orders and perform them on the server, which may result in remote orders being executed.
Hazard Level
Low
Vulnerability Type
操作系统命令注入
Published
2025-10-17
Last Modified
2026-02-24
References
https://www.twcert.org.tw/en/cp-139-10441-00aaf-2.html https://www.twcert.org.tw/tw/cp-132-10440-dd55d-1.html
Patch
https://www.hgiga.com/security_updates.html
Share on: