Command Injection in Opto22 Groov REST API_CVE-2025-13087

7.5 / 10

HIGH

CVSS:4.0/AV:N/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N

Description

A vulnerability exists in the Opto22 Groov Manage REST API on GRV-EPIC and groov RIO Products that allows remote code execution with root privileges. When a POST request is executed against the vulnerable endpoint, the application reads certain header details and unsafely uses these values to build commands, allowing an attacker with administrative privileges to inject arbitrary commands that execute as root.

Basic Information

ID CVE-2025-13087

Source icscert

Published Nov 20, 2025 at 21:32

Affected Product

Vendor Opto22

Product GRV-EPIC-PR1

Affected Versions Opto22 GRV-EPIC-PR1 0
Opto22 GRV-EPIC-PR2 0
Opto22 groov RIO GRV-R7-MM1001-10 0
Opto22 groov RIO GRV-R7-MM2001-10 0
Opto22 groov RIO GRV-R7-I1VAPM-3 0

CWE Classification

CWE-78

References

{
    "lastseen": "",
    "description": "A vulnerability exists in the Opto22 Groov Manage REST API on GRV-EPIC and groov RIO Products that allows remote code execution with root privileges. When a POST request is executed against the vulnerable endpoint, the application reads certain header details and unsafely uses these values to build commands, allowing an attacker with administrative privileges to inject arbitrary commands that execute as root.",
    "published": "2025-11-20T21:32:37.510Z",
    "modified": "2025-11-20T21:32:37.510Z",
    "type": "cve",
    "title": "Command Injection in Opto22 Groov REST API",
    "source": "icscert",
    "references": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-324-03\nhttps://www.opto22.com/support/resources-tools/knowledgebase/kb91326\nhttps://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2025/icsa-25-324-03.json",
    "id": "CVE-2025-13087",
    "bulletinFamily": "",
    "cwe": [
        "CWE-78"
    ],
    "cvelist": null,
    "sourceData": "Opto22 GRV-EPIC-PR1 0\nOpto22 GRV-EPIC-PR2 0\nOpto22 groov RIO GRV-R7-MM1001-10 0\nOpto22 groov RIO GRV-R7-MM2001-10 0\nOpto22 groov RIO GRV-R7-I1VAPM-3 0",
    "sourceHref": "",
    "cvss": {
        "score": 7.5,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "GRV-EPIC-PR1",
    "version": "0",
    "vendor": "Opto22",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}