CVE-2025-11779

by Fred · 02/12/2025

Stack-based buffer overflow vulnerability in CircutorSGE-PLC1000/SGE-PLC50 v9.0.2. The ‘SetLan’ function is invoked when a new configuration is applied. This new configuration function is activated by a management web request, which can be invoked by a user when making changes to the ‘index.cgi’ web application. The parameters are not being sanitised, which could lead to command injection.

More information : https://www.incibe.es/en/incibe-cert/notices/aviso-sci/multiple-vulnerabilities-circutor-products-0

CVE-2025-11779

Similar

Recent Posts

Categories

CVE-2025-11779

Share this:

Similar

Recent Posts

Categories

Tags