CVE-2025-9000

Sažetak

A vulnerability was found in Mechrevo Control Center GX V2 5.56.51.48. Affected by this vulnerability is an unknown functionality of the component reg File Handler. The manipulation leads to uncontrolled search path. It is possible to launch the attack on the local host. The complexity of an attack is rather high. The exploitation appears to be difficult. The exploit has been disclosed to the public and may be used.

Reference

https://drive.proton.me/urls/7QYSEW6734#H3N4fQ3mw6gX
https://vuldb.com/?ctiid.320029
https://vuldb.com/?id.320029
https://vuldb.com/?submit.624903
https://vuldb.com/?submit.624903

CVSS

Base:	6.0
Impact:	10.0
Exploitability:	1.5

Pristup

Vektor	Složenost	Autentikacija
LOCAL	HIGH	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:L/AC:H/Au:S/C:C/I:C/A:C

Zadnje važnije ažuriranje

11-09-2025 - 18:14

Objavljeno

15-08-2025 - 02:15