PT-2025-39447 · Unknown · Web Portal

Published

2025-09-25

Updated

2025-09-26

CVE-2025-59817

CVSS v3.1

8.4

High

Vector

AV:A/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Affected versions not specified

Description This issue allows attackers to execute arbitrary commands on the underlying system. Successful exploitation grants full control over the device due to the web portal running with root privileges, potentially compromising its availability, confidentiality, and integrity.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-77

Related Identifiers

BDU:2026-00206

CVE-2025-59817

Affected Products

Web Portal

PT-2025-39447 · Unknown · Web Portal

CVE-2025-59817

Weakness Enumeration

Related Identifiers

Affected Products

References · 8