24h | 7d | 30d

CVE-2025-66257

Overview

  • DB Electronica Telecomunicazioni S.p.A.
  • Mozart FM Transmitter
26 Nov 2025
Published
26 Nov 2025
Updated
CVSS v4.0
CRITICAL (9.2)
EPSS
0.07%
KEV

Description

Unauthenticated Arbitrary File Deletion (patch_contents.php) in DB Electronica Telecomunicazioni S.p.A. Mozart FM Transmitter versions 30, 50, 100, 300, 500, 1000, 2000, 3000, 3500, 6000, 7000 allows an attacker to perform The deletepatch parameter allows unauthenticated deletion of arbitrary files. The `deletepatch` parameter in `patch_contents.php` allows unauthenticated deletion of arbitrary files in `/var/www/patch/` directory without sanitization or access control checks.

Statistics

  • 2 Posts
  • 8 Interactions
Last activity: 6 hours ago

Fediverse

Profile picture
Offensive Sequence @offseq

🚨 CVE-2025-66257 (CRITICAL, CVSS 9.2): Mozart FM Transmitters (DB Electronica) allow unauthenticated file deletion via patch_contents.php. Segment networks, monitor traffic, restrict access—patch pending! More: radar.offseq.com/threat/cve-20

  • 0
  • 0
  • 0
  • 12h ago
Profile picture
cR0w h0 h0 @cR0w

Go hack more radio shit.

abdulmhsblog.com/posts/webfmvu

  • CVE-2025-66259: Authenticated Root RCE (main_ok.php)
  • CVE-2025-66253: Unauthenticated OS Command Injection (Upgrade)
  • CVE-2025-66261: Unauthenticated OS Command Injection (Restore)
  • CVE-2025-66262: Arbitrary File Overwrite (Tar Path Traversal)
  • CVE-2025-66250: Unrestricted File Upload (Status)
  • CVE-2025-66255: Unsigned Firmware Upload
  • CVE-2025-66256: Unrestricted Patch Upload
  • CVE-2025-66251: Path Traversal File Deletion
  • CVE-2025-66254: Arbitrary File Deletion (Upgrade)
  • CVE-2025-66263: Arbitrary File Read (Null Byte Injection)
  • CVE-2025-66260: SQL Injection
  • CVE-2025-66258: Stored XSS via XML Injection
  • CVE-2025-66257: Arbitrary Patch Deletion
  • CVE-2025-66252: Infinite Loop Denial of Service
  • 5
  • 3
  • 0
  • 6h ago

CVE-2025-66261

Overview

  • DB Electronica Telecomunicazioni S.p.A.
  • Mozart FM Transmitter
26 Nov 2025
Published
26 Nov 2025
Updated
CVSS v4.0
CRITICAL (9.9)
EPSS
0.93%
KEV

Description

Unauthenticated OS Command Injection (restore_settings.php) in DB Electronica Telecomunicazioni S.p.A. Mozart FM Transmitter versions 30, 50, 100, 300, 500, 1000, 2000, 3000, 3500, 6000, 7000 allows an attacker to perform URL-decoded name parameter passed to exec() allows remote code execution. The `/var/tdf/restore_settings.php` endpoint passes user-controlled `$_GET["name"]` parameter through `urldecode()` directly into `exec()` without validation or escaping. Attackers can inject arbitrary shell commands using metacharacters (`;`, `|`, `&&`, etc.) to achieve unauthenticated remote code execution as the web server user.

Statistics

  • 2 Posts
  • 8 Interactions
Last activity: 6 hours ago

Fediverse

Profile picture
Offensive Sequence @offseq

🚨 CRITICAL (CVSS 9.9): DB Electronica Mozart FM Transmitters (30–7000) vulnerable to unauthenticated OS command injection (CVE-2025-66261) via restore_settings.php. Restrict access, enable WAF/IDS, and monitor now! radar.offseq.com/threat/cve-20

  • 0
  • 0
  • 0
  • 15h ago
Profile picture
cR0w h0 h0 @cR0w

Go hack more radio shit.

abdulmhsblog.com/posts/webfmvu

  • CVE-2025-66259: Authenticated Root RCE (main_ok.php)
  • CVE-2025-66253: Unauthenticated OS Command Injection (Upgrade)
  • CVE-2025-66261: Unauthenticated OS Command Injection (Restore)
  • CVE-2025-66262: Arbitrary File Overwrite (Tar Path Traversal)
  • CVE-2025-66250: Unrestricted File Upload (Status)
  • CVE-2025-66255: Unsigned Firmware Upload
  • CVE-2025-66256: Unrestricted Patch Upload
  • CVE-2025-66251: Path Traversal File Deletion
  • CVE-2025-66254: Arbitrary File Deletion (Upgrade)
  • CVE-2025-66263: Arbitrary File Read (Null Byte Injection)
  • CVE-2025-66260: SQL Injection
  • CVE-2025-66258: Stored XSS via XML Injection
  • CVE-2025-66257: Arbitrary Patch Deletion
  • CVE-2025-66252: Infinite Loop Denial of Service
  • 5
  • 3
  • 0
  • 6h ago

CVE-2025-66259

Overview

  • DB Electronica Telecomunicazioni S.p.A.
  • Mozart FM Transmitter
26 Nov 2025
Published
26 Nov 2025
Updated
CVSS v4.0
CRITICAL (9.3)
EPSS
0.36%
KEV

Description

Authenticated Root Remote Code Execution via improrer user input filtering in DB Electronica Telecomunicazioni S.p.A. Mozart FM Transmitter versions 30, 50, 100, 300, 500, 1000, 2000, 3000, 3500, 6000, 7000 allows an attacker to perform in main_ok.php user supplied data/hour/time is passed directly into date shell command

Statistics

  • 2 Posts
  • 8 Interactions
Last activity: 6 hours ago

Fediverse

Profile picture
Offensive Sequence @offseq

🚨 CRITICAL: CVE-2025-66259 hits DB Mozart FM Transmitters (v30-7000) — improper input validation lets authenticated root users execute remote code. Broadcast ops at risk — restrict access & monitor for RCE. radar.offseq.com/threat/cve-20

  • 0
  • 0
  • 0
  • 14h ago
Profile picture
cR0w h0 h0 @cR0w

Go hack more radio shit.

abdulmhsblog.com/posts/webfmvu

  • CVE-2025-66259: Authenticated Root RCE (main_ok.php)
  • CVE-2025-66253: Unauthenticated OS Command Injection (Upgrade)
  • CVE-2025-66261: Unauthenticated OS Command Injection (Restore)
  • CVE-2025-66262: Arbitrary File Overwrite (Tar Path Traversal)
  • CVE-2025-66250: Unrestricted File Upload (Status)
  • CVE-2025-66255: Unsigned Firmware Upload
  • CVE-2025-66256: Unrestricted Patch Upload
  • CVE-2025-66251: Path Traversal File Deletion
  • CVE-2025-66254: Arbitrary File Deletion (Upgrade)
  • CVE-2025-66263: Arbitrary File Read (Null Byte Injection)
  • CVE-2025-66260: SQL Injection
  • CVE-2025-66258: Stored XSS via XML Injection
  • CVE-2025-66257: Arbitrary Patch Deletion
  • CVE-2025-66252: Infinite Loop Denial of Service
  • 5
  • 3
  • 0
  • 6h ago

CVE-2025-66262

Overview

  • DB Electronica Telecomunicazioni S.p.A.
  • Mozart FM Transmitter
26 Nov 2025
Published
26 Nov 2025
Updated
CVSS v4.0
CRITICAL (9.3)
EPSS
0.07%
KEV

Description

Arbitrary File Overwrite via Tar Extraction Path Traversal in DB Electronica Telecomunicazioni S.p.A. Mozart FM Transmitter versions 30, 50, 100, 300, 500, 1000, 2000, 3000, 3500, 6000, 7000 allows an attacker to perform Tar extraction with -C / allow arbitrary file overwrite via crafted archive. The `restore_mozzi_memories.sh` script extracts user-controlled tar archives with `-C /` flag, depositing contents to the filesystem root without path validation. When combined with the unauthenticated file upload vulnerabilities (CVE-01, CVE-06, CVE-07), attackers can craft malicious .tgz archives containing path-traversed filenames (e.g., `etc/shadow`, `var/www/index.php`) to overwrite critical system files in writable directories, achieving full system compromise.

Statistics

  • 2 Posts
  • 8 Interactions
Last activity: 6 hours ago

Fediverse

Profile picture
Offensive Sequence @offseq

🚨 CVE-2025-66262 (CRITICAL): Mozart FM Transmitters (v30–7000) vulnerable to arbitrary file overwrite via tar extraction path traversal in restore_mozzi_memories.sh. Attackers can fully compromise devices. Patch & restrict uploads! radar.offseq.com/threat/cve-20

  • 0
  • 0
  • 0
  • 16h ago
Profile picture
cR0w h0 h0 @cR0w

Go hack more radio shit.

abdulmhsblog.com/posts/webfmvu

  • CVE-2025-66259: Authenticated Root RCE (main_ok.php)
  • CVE-2025-66253: Unauthenticated OS Command Injection (Upgrade)
  • CVE-2025-66261: Unauthenticated OS Command Injection (Restore)
  • CVE-2025-66262: Arbitrary File Overwrite (Tar Path Traversal)
  • CVE-2025-66250: Unrestricted File Upload (Status)
  • CVE-2025-66255: Unsigned Firmware Upload
  • CVE-2025-66256: Unrestricted Patch Upload
  • CVE-2025-66251: Path Traversal File Deletion
  • CVE-2025-66254: Arbitrary File Deletion (Upgrade)
  • CVE-2025-66263: Arbitrary File Read (Null Byte Injection)
  • CVE-2025-66260: SQL Injection
  • CVE-2025-66258: Stored XSS via XML Injection
  • CVE-2025-66257: Arbitrary Patch Deletion
  • CVE-2025-66252: Infinite Loop Denial of Service
  • 5
  • 3
  • 0
  • 6h ago

CVE-2025-66250

Overview

  • DB Electronica Telecomunicazioni S.p.A.
  • Mozart FM Transmitter
26 Nov 2025
Published
26 Nov 2025
Updated
CVSS v4.0
CRITICAL (9.2)
EPSS
0.04%
KEV

Description

Unauthenticated Arbitrary File Upload (status_contents.php) in DB Electronica Telecomunicazioni S.p.A. Mozart FM Transmitter versions 30, 50, 100, 300, 500, 1000, 2000, 3000, 3500, 6000, 7000 allows an attacker to perform Allows unauthenticated arbitrary file upload via /var/tdf/status_contents.php.

Statistics

  • 2 Posts
  • 8 Interactions
Last activity: 6 hours ago

Fediverse

Profile picture
cR0w h0 h0 @cR0w

Go hack more radio shit.

abdulmhsblog.com/posts/webfmvu

  • CVE-2025-66259: Authenticated Root RCE (main_ok.php)
  • CVE-2025-66253: Unauthenticated OS Command Injection (Upgrade)
  • CVE-2025-66261: Unauthenticated OS Command Injection (Restore)
  • CVE-2025-66262: Arbitrary File Overwrite (Tar Path Traversal)
  • CVE-2025-66250: Unrestricted File Upload (Status)
  • CVE-2025-66255: Unsigned Firmware Upload
  • CVE-2025-66256: Unrestricted Patch Upload
  • CVE-2025-66251: Path Traversal File Deletion
  • CVE-2025-66254: Arbitrary File Deletion (Upgrade)
  • CVE-2025-66263: Arbitrary File Read (Null Byte Injection)
  • CVE-2025-66260: SQL Injection
  • CVE-2025-66258: Stored XSS via XML Injection
  • CVE-2025-66257: Arbitrary Patch Deletion
  • CVE-2025-66252: Infinite Loop Denial of Service
  • 5
  • 3
  • 0
  • 6h ago

Bluesky

Profile picture
BaseFortify.eu @basefortify.bsky.social
🚨 CVE-2025-66250 — DB Electronica FM Transmitters Attackers can upload arbitrary files without authentication. This can lead to full device takeover and malware deployment. Urgent patching required. 🔗 basefortify.eu/cve_reports/... #CVE #ICS #IoT #SecurityRisk #Firmware
  • 0
  • 0
  • 0
  • 12h ago

CVE-2025-64660

Overview

  • Microsoft
  • Visual Studio Code
20 Nov 2025
Published
26 Nov 2025
Updated
CVSS v3.1
HIGH (8.0)
EPSS
0.06%
KEV

Description

Improper access control in GitHub Copilot and Visual Studio Code allows an authorized attacker to execute code over a network.

Statistics

  • 1 Post
  • 1 Interaction
Last activity: 19 hours ago

Bluesky

Profile picture
SecQube | Harvey | AI Platform for MS Graph @secqube.com
CVE-2025-64660 GitHub Copilot and Visual Studio Code Remote Code Execution Vulnerability scq.ms/4innr3c #SecQube #cybersecurity
  • 1
  • 0
  • 0
  • 19h ago

CVE-2025-65202

Overview

  • Pending
26 Nov 2025
Published
26 Nov 2025
Updated
CVSS
Pending
EPSS
Pending
KEV

Description

TRENDnet TEW-657BRM 1.00.1 has an authenticated remote OS command injection vulnerability in the setup.cgi binary, exploitable via the HTTP parameters "command", "todo", and "next_file," which allows an attacker to execute arbitrary commands with root privileges.

Statistics

  • 1 Post
  • 1 Interaction
Last activity: Last hour

Fediverse

Profile picture
cR0w h0 h0 @cR0w

TRENDnet

cve.org/CVERecord?id=CVE-2025-

cc: @Dio9sys @da_667

  • 0
  • 1
  • 0
  • Last hour

CVE-2025-41115

Overview

  • Grafana
  • Grafana Enterprise
21 Nov 2025
Published
24 Nov 2025
Updated
CVSS v3.1
CRITICAL (10.0)
EPSS
0.02%
KEV

Description

SCIM provisioning was introduced in Grafana Enterprise and Grafana Cloud in April to improve how organizations manage users and teams in Grafana by introducing automated user lifecycle management. In Grafana versions 12.x where SCIM provisioning is enabled and configured, a vulnerability in user identity handling allows a malicious or compromised SCIM client to provision a user with a numeric externalId, which in turn could allow to override internal user IDs and lead to impersonation or privilege escalation. This vulnerability applies only if all of the following conditions are met: - `enableSCIM` feature flag set to true - `user_sync_enabled` config option in the `[auth.scim]` block set to true

Statistics

  • 1 Post
  • 1 Interaction
Last activity: 23 hours ago

Bluesky

Profile picture
Checkmarx Zero @checkmarxzero.bsky.social
🚨 #CVE-2025-41115: critical vulnerability in #Grafana user identity handling. Update to the latest platform version. #Vulnerable versions with #SCIM provisioning enabled can let a malicious SCIM client use a numeric “externalId" to override user IDs, risking impersonation or privilege escalation.
  • 0
  • 1
  • 0
  • 23h ago

CVE-2023-48022

Overview

  • Pending
28 Nov 2023
Published
28 Oct 2024
Updated
CVSS
Pending
EPSS
91.09%
KEV

Description

Anyscale Ray 2.6.3 and 2.8.0 allows a remote attacker to execute arbitrary code via the job submission API. NOTE: the vendor's position is that this report is irrelevant because Ray, as stated in its documentation, is not intended for use outside of a strictly controlled network environment

Statistics

  • 1 Post
Last activity: 6 hours ago

Bluesky

Profile picture
matricedigitale.bsky.social @matricedigitale.bsky.social
ShadowRay 2.0 sfrutta la vulnerabilità CVE-2023-48022 in Ray per creare una botnet globale con cryptomining, propagazione autonoma e furto dati. #AI #botnet #cryptomining #Ray #ShadowRay #vulnerabilità www.matricedigitale.it/2025/11/26/h...
  • 0
  • 0
  • 0
  • 6h ago

CVE-2025-64130

Overview

  • Zenitel
  • TCIV-3+
26 Nov 2025
Published
26 Nov 2025
Updated
CVSS v3.1
CRITICAL (9.8)
EPSS
Pending
KEV

Description

Zenitel TCIV-3+ is vulnerable to a reflected cross-site scripting vulnerability, which could allow a remote attacker to execute arbitrary JavaScript on the victim's browser.

Statistics

  • 1 Post
Last activity: 4 hours ago

Fediverse

Profile picture
CyberNetsecIO @netsecio

📰 CISA Warns of Critical Flaws in Industrial Control Systems, Including CVSS 10.0 Bug

🚨 CISA releases 7 ICS advisories for flaws in Rockwell, Zenitel & other OT gear. A critical CVSS 10.0 RCE vulnerability (CVE-2025-64130) affects Zenitel comms equipment. Asset owners urged to patch immediately. #ICS #OTsecurity #Vulnerability #CISA

🔗 cyber.netsecops.io/articles/ci

  • 0
  • 0
  • 0
  • 4h ago
Showing 11 to 20 of 42 CVEs