What is CVE-2019-25065?

CVE-2019-25065 is a medium-severity vulnerability in Unspecified Opennetadmin, classified under OS Command Injection. CVSS score: 6.3/10. Published 2022-06-09.

How severe is CVE-2019-25065?

Medium severity. CVSS v3 base score is 6.3 out of 10.

Is CVE-2019-25065 known to be exploited?

5 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

RCE in Unspecified Opennetadmin

CVE-2019-25065

A vulnerability was found in OpenNetAdmin 18.1.1. It has been rated as critical. Affected by this issue is some unknown functionality. The manipulation leads to privilege escalation. The attack may be launched remotely. The exploit has bee…

Vulnerability class: Command Injection (OS Command Injection)

EPSS: 0.737 (98.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L.

Affected products

Unspecified Opennetadmin — versions 18.1.1

Weakness classification (CWE)

CWE-78 — OS Command Injection

Public proof-of-concept exploits

References

0day.today/exploit/33544 (x_refsource_MISC)
vuldb.com/ (x_refsource_MISC)

Frequently asked questions

What is CVE-2019-25065?: CVE-2019-25065 is a medium-severity vulnerability in Unspecified Opennetadmin, classified under OS Command Injection. CVSS score: 6.3/10. Published 2022-06-09.
How severe is CVE-2019-25065?: Medium severity. CVSS v3 base score is 6.3 out of 10.
Is CVE-2019-25065 known to be exploited?: 5 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.