Security Advisory

CVE-2025-55037

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-05 05:24:41

Last updated 2025-09-05 14:52:47

Assigner jpcert

State PUBLISHED

Description

Improper neutralization of special elements used in an OS command (OS Command Injection) issue exists in TkEasyGUI versions prior to v1.0.22. If this vulnerability is exploited, an arbitrary OS command may be executed by a remote unauthenticated attacker if the settings are configured to construct messages from external sources.

← Browse all CVEs View on cve.org ↗