CVE 9.3 CRITICAL

Shell command injection in 3onedata GW1101-1D(RS-485)-TB-P modbus gateway_CVE-2025-13605

May 4, 2026 invoker category_cve

9.3 / 10

CRITICAL

CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

Description

3onedata modbus gateway device model GW1101-1D(RS-485)-TB-P (hardware version V2.2.0) allows authenticated users to execute arbitrary shell commands in the context of the root user by providing payload in the "IP address" field of the diagnosis test tools.
This issue has been resolved in firmware version 3.0.59B2024080600R4353

AI Analysis

Shell command injection vulnerability in 3onedata modbus gateway device model GW1101-1D(RS-485)-TB-P, allowing authenticated users to execute arbitrary shell commands as root.

Basic Information

ID CVE-2025-13605

Source CERT-PL

Published May 4, 2026 at 14:52

Affected Product

Vendor 3onedata

Product GW1101-1D(RS-485)-TB-P

Version V2.2.0

Affected Versions 3onedata GW1101-1D(RS-485)-TB-P 0

CWE Classification

CWE-78

AI Assessment

AI Score 9.3 / 10

AI Severity Critical

Vendor 3onedata

Product GW1101-1D(RS-485)-TB-P modbus gateway

Version V2.2.0

References

cert.pl /en/posts/2026/05/CVE-2025-13605

{
    "lastseen": "",
    "description": "3onedata modbus gateway device model GW1101-1D(RS-485)-TB-P (hardware version V2.2.0) allows authenticated users to execute arbitrary shell commands in the context of the root user by providing payload in the \"IP address\" field of the diagnosis test tools.\nThis issue has been resolved in firmware version 3.0.59B2024080600R4353",
    "published": "2026-05-04T14:52:39.300Z",
    "modified": "2026-05-04T14:52:39.300Z",
    "type": "cve",
    "title": "Shell command injection in 3onedata GW1101-1D(RS-485)-TB-P modbus gateway",
    "source": "CERT-PL",
    "references": "https://cert.pl/en/posts/2026/05/CVE-2025-13605",
    "id": "CVE-2025-13605",
    "bulletinFamily": "",
    "cwe": [
        "CWE-78"
    ],
    "cvelist": null,
    "sourceData": "3onedata GW1101-1D(RS-485)-TB-P 0",
    "sourceHref": "",
    "cvss": {
        "score": 9.3,
        "severity": "CRITICAL",
        "vector": "CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "GW1101-1D(RS-485)-TB-P",
    "version": "V2.2.0",
    "vendor": "3onedata",
    "ai_description": "Shell command injection vulnerability in 3onedata modbus gateway device model GW1101-1D(RS-485)-TB-P, allowing authenticated users to execute arbitrary shell commands as root.",
    "ai_severity": "Critical",
    "ai_vendor": "3onedata",
    "ai_product": "GW1101-1D(RS-485)-TB-P modbus gateway",
    "ai_version": "V2.2.0",
    "ai_score": 9.3
}

💭 Join the Security Discussion ❌ Cancel Reply