CVE-2025-61304_CVE-2025-61304

9.8 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

OS command injection vulnerability in Dynatrace ActiveGate ping extension up to 1.016 via crafted ip address.

AI Analysis

OS command injection vulnerability in Dynatrace ActiveGate ping extension

Basic Information

ID CVE-2025-61304

Source mitre

Published Nov 5, 2025 at 00:00

Modified Nov 5, 2025 at 19:26

Affected Product

Vendor n/a

Product n/a

Version n/a

Affected Versions n/a n/a n/a

CWE Classification

CWE-78

AI Assessment

AI Score 9.8 / 10

AI Severity Critical

Vendor Dynatrace

Product ActiveGate

Version up to 1.016

References

github.com /pentastic-be/CVE-2025-61304

{
    "lastseen": "",
    "description": "OS command injection vulnerability in Dynatrace ActiveGate ping extension up to 1.016 via crafted ip address.",
    "published": "2025-11-05T00:00:00.000Z",
    "modified": "2025-11-05T19:26:14.228Z",
    "type": "cve",
    "title": "CVE-2025-61304",
    "source": "mitre",
    "references": "https://github.com/pentastic-be/CVE-2025-61304",
    "id": "CVE-2025-61304",
    "bulletinFamily": "",
    "cwe": [
        "CWE-78"
    ],
    "cvelist": null,
    "sourceData": "n/a n/a n/a",
    "sourceHref": "",
    "cvss": {
        "score": 9.8,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "n/a",
    "version": "n/a",
    "vendor": "n/a",
    "ai_description": "OS command injection vulnerability in Dynatrace ActiveGate ping extension",
    "ai_severity": "Critical",
    "ai_vendor": "Dynatrace",
    "ai_product": "ActiveGate",
    "ai_version": "up to 1.016",
    "ai_score": 9.8
}