Security Advisory

CVE-2018-25144

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-24 19:27:49

Last updated 2026-02-02 15:58:15

Assigner VulnCheck

State PUBLISHED

Description

Microhard Systems IPn4G 1.1.0 contains an authentication bypass vulnerability in the hidden system-editor.sh script that allows authenticated attackers to read, modify, or delete arbitrary files. Attackers can exploit unsanitized path, savefile, edit, and delfile parameters to perform unauthorized file system modifications through GET and POST requests.

← Browse all CVEs View on cve.org ↗