What is CVE-2025-34082?

CVE-2025-34082 is a vulnerability in Igel Technology Gmbh Os, classified under OS Command Injection. Published 2025-07-03.

Is CVE-2025-34082 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

RCE in Igel Technology Gmbh Os

CVE-2025-34082

A command injection vulnerability exists in IGEL OS versions prior to 11.04.270 within the Secure Terminal and Secure Shadow services. The flaw arises due to improper input sanitization in the handling of specially crafted PROXYCMD command…

Vulnerability class: Command Injection (OS Command Injection)

EPSS: 0.671 (98.6th percentile) — read the EPSS interpretation.

Affected products

Igel Technology Gmbh Os — versions 11, 10

Weakness classification (CWE)

CWE-78 — OS Command Injection

Public proof-of-concept exploits

References

raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/l… (exploit)
kb.igel.com/security-safety/current/isn-2021-01-igel-os-remote-command-executio… (vendor-advisory)
www.igel.com/wp-content/uploads/2021/02/lxos_11.04.270.txt (vendor-advisory)
vulncheck.com/advisories/igel-os-secure-terminal-shadow-rce (third-party-advisory)

Frequently asked questions

What is CVE-2025-34082?: CVE-2025-34082 is a vulnerability in Igel Technology Gmbh Os, classified under OS Command Injection. Published 2025-07-03.
Is CVE-2025-34082 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.