Opto 22 · Groov Manage Rest Api · CVE-2025-13087
**Name of the Vulnerable Software and Affected Versions**
Opto22 Groov Manage REST API on GRV-EPIC and groov RIO Products (affected versions not specified)
**Description**
A flaw exists in the Opto22 Groov Manage REST API that could allow for remote code execution with root privileges. The issue arises when a POST request is sent to a vulnerable endpoint. The application improperly handles header details from the request, using them to construct commands without sufficient safeguards. This allows an attacker with administrative access to inject and execute arbitrary commands as root. The vulnerable endpoint processes POST requests and utilizes header information to build commands. The vulnerable parameters are within the request headers.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.