ГлавнаяУязвимости → CVE-2025-2421
9.8критическая

CVE-2025-2421

Описание

Improper Control of Generation of Code ('Code Injection') vulnerability in Profelis Informatics SambaBox allows Code Injection. This issue affects SambaBox: before 5.1.

Затрагиваемое ПО
Felisify Sambabox
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://sambabox.io/2025/04/14/version-5-1/https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-25-0101https://www.usom.gov.tr/bildirim/tr-25-0101