Zenitel Tcis-3+
4 CVEs affecting Zenitel Tcis-3+. Latest disclosed: 2026-02-04. Critical: 2, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-59818 | Critical | 10.0 | 2026-02-04 | This vulnerability allows authenticated attackers to execute arbitrary commands on the underlying system using the file name of an uploaded file. |
CVE-2025-64090 | Critical | 10.0 | 2026-01-09 | This vulnerability allows authenticated attackers to execute commands via the hostname of the device. |
CVE-2025-64091 | High | 8.6 | 2026-01-09 | This vulnerability allows authenticated attackers to execute commands via the NTP-configuration of the device. |
CVE-2025-59817 | High | 8.4 | 2025-09-25 | This vulnerability allows attackers to execute arbitrary commands on the underlying system. Because the web portal runs with root privileges, successful exploi… |