Security Advisory

CVE-2025-24522

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-05-01 18:37:37

Last updated 2025-05-01 19:00:44

Assigner icscert

State PUBLISHED

Description

KUNBUS Revolution Pi OS Bookworm 01/2025 is vulnerable because authentication is not configured by default for the Node-RED server. This can give an unauthenticated remote attacker full access to the Node-RED server where they can run arbitrary commands on the underlying operating system.

← Browse all CVEs View on cve.org ↗