Zenitel Icx500_firmware
2 CVEs affecting Zenitel Icx500_firmware. Latest disclosed: 2026-01-09. Critical: 1, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-64093 | Critical | 10.0 | 2026-01-09 | Remote Code Execution vulnerability that allows unauthenticated attackers to inject arbitrary commands into the hostname of the device. |
CVE-2025-64092 | High | 7.5 | 2026-01-09 | This vulnerability allows unauthenticated attackers to inject an SQL request into GET request parameters and directly query the underlying database. |