CVE-2025-20055

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-20055
OS command injection vulnerability exists in network storage servers STEALTHONE D220/D340 provided by Y'S corporation. An attacker who can access the affected product may execute an arbitrary OS command.
CVSS

No CVSS.

References
Link Resource
https://jvn.jp/en/vu/JVNVU99653331/
https://stealthone.net/product_info/d220-d340%e3%80%8cv6-03-03%e3%80%8d%e5%8f%8a%e3%81%b3d440%e3%80%8cv7-00-11%e3%80%8d%e3%83%95%e3%82%a1%e3%83%bc%e3%83%a0%e3%82%a6%e3%82%a7%e3%82%a2%e3%82%92%e3%83%aa%e3%83%aa%e3%83%bc%e3%82%b9%e8%87%b4/
Configurations

No configuration.

History

14 Jan 2025, 10:15

Type Values Removed Values Added
New CVE
Information

Published : 2025-01-14 10:15

Updated : 2025-01-14 10:15

NVD link : CVE-2025-20055

Mitre link : CVE-2025-20055

JSON object : View

Products Affected

No product.

CWE
CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')