CVE-2025-27079

Name of the Vulnerable Software and Affected Versions: AOS-8 Instant versions prior to the fixed version AOS-10 AP versions prior to the fixed version

Description: A vulnerability in the file creation process on the command line interface could allow an authenticated remote attacker to perform remote code execution (RCE). Successful exploitation could allow an attacker to execute arbitrary operating system commands on the underlying operating system, leading to potential system compromise.

Recommendations: For AOS-8 Instant, update to a version that includes the fix for this issue. For AOS-10 AP, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the command line interface until a patch is available.