CNNVD-202512-471 Information
Dec 04, 2025
cve
CNNVD ID
CNNVD-202512-471
Related CVE
- CNNVD Published: 2025-12-04
Description (Chinese)
Easywall是jpylypiw开源的一个防火墙软件。 Easywall 0.3.1版本存在参数注入漏洞,该漏洞源于/ports-save端点存在命令注入,可能导致执行任意命令。
Description (English)
Easywall is an open-source firewall software for jpylypiw. Easywall version 0.3.1 contains a gap in parameters, which arises from the existence of an order injection at the/ports-save endpoint, which may lead to the execution of an arbitrary order.
Hazard Level
High
Vulnerability Type
参数注入
Affected Vendor
jpylypiw
Published
2025-12-04
Last Modified
2026-02-24
References
https://github.com/jpylypiw/easywall https://jpylypiw.github.io/easywall/ https://www.exploit-db.com/exploits/51856 https://www.vulncheck.com/advisories/easywall-031-authentication-bypass-via-command-injection-in-ports-save-endpoint
Share on: