Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-7451

The iSherlock developed by Hgiga has an OS Command Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary OS commands and execute them on the server. This vulnerability has already been exploited. Please update immediately.

Published

2025-07-14T03:15:23.947

Last Modified

2025-07-15T13:14:24.053

Status

Awaiting Analysis

Source

[email protected]

Severity

CVSSv3.1: 9.8 (CRITICAL)

Weaknesses

Type: Secondary
CWE-78

Affected Vendors & Products

References

https://www.twcert.org.tw/en/cp-139-10238-f2bba-2.html ([email protected])
https://www.twcert.org.tw/tw/cp-132-10237-9e0f7-1.html ([email protected])