CVE-2025-65074
๐ด HIGHWaveView client allows users to execute restricted set of predefined commands and scripts on the connected WaveStore Server.ย A malicious attacker with high-privileges is able to execute arbitrary OS c...
Description
Request Expert ReviewWaveView client allows users to execute restricted set of predefined commands and scripts on the connected WaveStore Server.ย A malicious attacker with high-privileges is able to execute arbitrary OS commands on the server using path traversal in theย showerr script. This issue was fixed in version 6.44.44
Affected Products (1)
CVSS Scores
References
Additional Information
- Source
- cvd@cert.pl
- State
- Analyzed
Related CVEs
CVE-2025-66177
HIGHThere is a Stack overflow Vulnerability in the device Search and Discovery feature of Hikvision NVR/DVR/CVR/IPC models. If exploited, an attacker on t...
CVE-2025-66176
HIGHThere is a Stack overflow Vulnerability in the device Search and Discovery feature of Hikvision Access Control Products. If exploited, an attacker on...
CVE-2026-0514
MEDIUMDue to a Cross-Site Scripting (XSS) vulnerability in SAP Business Connector, an unauthenticated attacker could craft a malicious link. When an unsuspe...
CVE-2026-0513
MEDIUMDue to an Open Redirect Vulnerability in SAP Supplier Relationship Management (SICF Handler in SRM Catalog), an unauthenticated attacker could craft a...
CVE-2026-0511
HIGHSAP Fiori App Intercompany Balance Reconciliation does not perform necessary authorization checks for an authenticated user, resulting in escalation o...
CVE-2026-0510
LOWThe User Management Engine (UME) in NetWeaver Application Server for Java (NW AS Java) utilizes an obsolete cryptographic algorithm for encrypting Use...
Share CVE-2025-65074
Share on Social Media
Copy Link
Embed Code
Request Expert Analysis
Request a professional security analysis for CVE-2025-65074 from our verified experts.
Credits System
Use your credits to get expert analysis from verified security professionals. Purchase more credits anytime!