CNNVD-202512-245 Information
Dec 02, 2025
cve
CNNVD ID
CNNVD-202512-245
Related CVE
- CNNVD Published: 2025-12-02
Description (Chinese)
CIRCUTOR SGE-PLC1000和CIRCUTOR SGE-PLC50都是西班牙CIRCUTOR公司的一个网络集中器。 CIRCUTOR SGE-PLC1000和CIRCUTOR SGE-PLC50 v9.0.2版本存在操作系统命令注入漏洞,该漏洞源于GetDNS、CheckPing和TraceRoute函数存在命令注入。
Description (English)
CIRCUTOR SGE-PLC1000 and CIRCUTOR SGE-PLC50 are all network centralists of the Spanish company CIRCUTOR. CIRCUTOR SGE-PLC1000 and CIRCUTOR SGE-PLC50 v9.2 have an operational system command-injection loophole, which originates from the GetDNS, CHeckPing and TradeRoute functions.
Hazard Level
Medium
Vulnerability Type
操作系统命令注入
Affected Vendor
CIRCUTOR
Published
2025-12-02
Last Modified
2026-02-24
References
https://www.incibe.es/en/incibe-cert/notices/aviso-sci/multiple-vulnerabilities-circutor-products-0