CVE-2025-47228

In the Production Environment extension in Netmake ScriptCase through 9.12.006 (23), shell injection in the SSH connection settings allows authenticated attackers to execute system commands via crafted HTTP requests.
Configurations

No configuration.

History

07 Jul 2025, 19:15

Type Values Removed Values Added
References () https://github.com/synacktiv/CVE-2025-47227_CVE-2025-47228 - () https://github.com/synacktiv/CVE-2025-47227_CVE-2025-47228 -
Summary
  • (es) En la extensión del entorno de producción en Netmake ScriptCase hasta la versión 9.12.006 (23), la inyección de shell en la configuración de la conexión SSH permite a atacantes autenticados ejecutar comandos del sistema a través de solicitudes HTTP manipuladas.

05 Jul 2025, 03:15

Type Values Removed Values Added
New CVE

Information

Published : 2025-07-05 03:15

Updated : 2025-07-08 16:18


NVD link : CVE-2025-47228

Mitre link : CVE-2025-47228

CVE.ORG link : CVE-2025-47228


JSON object : View

Products Affected

No product.

CWE
CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')