CVE-2025-28386

Sažetak

A remote code execution (RCE) vulnerability in the Plugin Management component of OpenC3 COSMOS v6.0.0 allows attackers to execute arbitrary code via uploading a crafted .txt file.

Reference

https://openc3.com/
https://visionspace.com/openc3-cosmos-a-security-assessment-of-an-open-source-mission-framework/

CVSS

Base:	0.0
Impact:	None
Exploitability:	None

Pristup

Vektor	Složenost	Autentikacija
None	None	None

Impact

Povjerljivost	Cjelovitost	Dostupnost
None	None	None

CVSS vektor

None

Zadnje važnije ažuriranje

13-06-2025 - 14:15

Objavljeno

13-06-2025 - 14:15