CNNVD-202510-783 Information
CNNVD ID
CNNVD-202510-783
Related CVE
- CNNVD Published: 2025-10-06
Description (Chinese)
EndRun Technologies Sonoma D12 Network Time Server是美国EndRun Technologies公司的一款时间同步设备。 EndRun Technologies Sonoma D12 Network Time Server (GPS) F/W 6010-0071-000 Ver 4.00版本存在安全漏洞,该漏洞源于容易受到OS命令注入攻击,可能导致执行任意代码、拒绝服务、权限提升和信息泄露。
Description (English)
EndRun Technologies Sonoma D12 Network Times Server is a time-synchronized device of the United States company EndRun Technologies. EndRun Technologies Sonoma D12 Network Time Server (GPS) version F/W 6010-007-000 Ver 4.00 contains a security loophole, which stems from its vulnerability to OS-ordered injections, which can lead to arbitrary code enforcement, denial of service, power enhancement and information disclosure.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
EndRun Technologies
Published
2025-10-06
Last Modified
2026-02-24
References
http://endrun.com http://sonoma.com https://xdiv-sec.github.io/vulnerability-research/advisories/2025-10-03-sonoma-d12
Share on: