CNNVD-202510-786 Information
CNNVD ID
CNNVD-202510-786
Related CVE
- CNNVD Published: 2025-10-06
Description (Chinese)
EndRun Technologies Sonoma D12 Network Time Server是美国EndRun Technologies公司的一款时间同步设备。 EndRun Technologies Sonoma D12 Network Time Server 4.00版本存在安全漏洞,该漏洞源于容易受到OS命令注入攻击,可能导致执行任意代码、拒绝服务、权限提升和信息泄露。
Description (English)
EndRun Technologies Sonoma D12 Network Times Server is a time-synchronized device of the United States company EndRun Technologies. There is a security loophole in version 400 of EndRun Technologies Sonoma D12 Network Times Server, which stems from its vulnerability to OS orders and can lead to arbitrary code enforcement, denial of services, power enhancement and information disclosure.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
EndRun Technologies
Published
2025-10-06
Last Modified
2026-02-24
References
http://endrun.com http://sonoma.com https://xdiv-sec.github.io/vulnerability-research/advisories/2025-10-03-sonoma-d12
Share on: