CVE-2025-41683

Name of the Vulnerable Software and Affected Versions (affected versions not specified)

Description An authenticated remote attacker can execute arbitrary commands with root privileges on affected devices due to improper sanitizing of user input in the Main Web Interface. The vulnerable endpoint is /event mail test. The lack of input sanitization allows for arbitrary command execution.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.