Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-3362

The web service of iSherlock from HGiga has an OS Command Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary OS commands and execute them on the server.

Published

2025-04-08T02:15:20.913

Last Modified

2025-04-08T18:13:53.347

Status

Awaiting Analysis

Source

[email protected]

Severity

CVSSv3.1: 9.8 (CRITICAL)

Weaknesses

Type: Secondary
CWE-78

Affected Vendors & Products

References

https://www.twcert.org.tw/en/cp-139-10055-7dacf-2.html ([email protected])
https://www.twcert.org.tw/tw/cp-132-10053-890b1-1.html ([email protected])