CVE-2025-41674

Name of the Vulnerable Software and Affected Versions versions prior to 2.3

Description A high privileged remote attacker can execute arbitrary system commands via POST requests in the diagnostic action due to improper neutralization of special elements used in an OS command.

Recommendations Update to version 2.3 or later.