CVE 8.6 HIGH

Columbia Weather Systems MicroServer Command Shell in Externally Accessible Directory_CVE-2025-66620

January 7, 2026 invoker category_cve

8.6 / 10

HIGH

CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

An unused webshell in MicroServer allows unlimited login attempts, with sudo rights on certain files and directories. An attacker with admin access to MicroServer can gain limited shell access, enabling persistence through reverse shells, and the ability to modify or remove data stored in the file system.

AI Analysis

Unused webshell in MicroServer allows unlimited login attempts with sudo rights

Basic Information

ID CVE-2025-66620

Source icscert

Published Jan 7, 2026 at 20:08

Modified Jan 7, 2026 at 20:16

Affected Product

Vendor Columbia Weather Systems

Product MicroServer

Affected Versions Columbia Weather Systems MicroServer 0

CWE Classification

CWE-553

AI Assessment

AI Score 8.6 / 10

AI Severity High

Vendor Columbia Weather Systems

Product MicroServer

References

{
    "lastseen": "",
    "description": "An unused webshell in MicroServer allows unlimited login attempts, with sudo rights on certain files and directories. An attacker with admin access to MicroServer can gain limited shell access, enabling persistence through reverse shells, and the ability to modify or remove data stored in the file system.",
    "published": "2026-01-07T20:08:33.137Z",
    "modified": "2026-01-07T20:16:28.659Z",
    "type": "cve",
    "title": "Columbia Weather Systems MicroServer Command Shell in Externally Accessible Directory",
    "source": "icscert",
    "references": "https://www.cisa.gov/news-events/ics-advisories/icsa-26-006-01\nhttps://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-006-01.json",
    "id": "CVE-2025-66620",
    "bulletinFamily": "",
    "cwe": [
        "CWE-553"
    ],
    "cvelist": null,
    "sourceData": "Columbia Weather Systems MicroServer 0",
    "sourceHref": "",
    "cvss": {
        "score": 8.6,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "MicroServer",
    "version": "0",
    "vendor": "Columbia Weather Systems",
    "ai_description": "Unused webshell in MicroServer allows unlimited login attempts with sudo rights",
    "ai_severity": "High",
    "ai_vendor": "Columbia Weather Systems",
    "ai_product": "MicroServer",
    "ai_version": "0",
    "ai_score": 8.6
}

💭 Join the Security Discussion ❌ Cancel Reply