PT-2025-26672 · Sangfor · Sangfor Endpoint Detection/Response
Published
2020-08-18
·
Updated
2025-11-20
·
CVE-2025-34041
CVSS v4.0
10
Critical
| Vector | AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X |
Name of the Vulnerable Software and Affected Versions:
Sangfor Endpoint Detection and Response (EDR) management platform versions 3.2.16, 3.2.17, and 3.2.19
Description:
The issue is an OS command injection vulnerability that allows unauthenticated attackers to send malicious HTTP requests to the EDR Manager interface. This results in arbitrary command execution with elevated privileges. The flaw is specific to the Chinese-language EDR builds.
Recommendations:
For version 3.2.16, update to a version that fixes the OS command injection vulnerability.
For version 3.2.17, update to a version that fixes the OS command injection vulnerability.
For version 3.2.19, update to a version that fixes the OS command injection vulnerability.
Fix
OS Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Sangfor Endpoint Detection/Response