TeamT5|ThreatSonar Anti-Ransomware – OS Command Injection

July 6, 2025 invoker category_cve

CVE Details

Basic Information

Title TeamT5|ThreatSonar Anti-Ransomware – OS Command Injection
Type cve
Published 2025-07-07T02:14:34.422Z
Modified 2025-07-07T02:14:34.422Z

Product Information

Vendor TeamT5
Product ThreatSonar Anti-Ransomware
Version 3.6.0

CVSS Information

Base Score 7.2 (HIGH)
Attack Vector CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

AI Analysis

AI Description ThreatSonar Anti-Ransomware has an OS Command Injection vulnerability, allowing remote attackers with intermediate privileges to execute arbitrary OS commands, potentially gaining administrative access.
AI Severity High
AI Vendor TeamT5
AI Product ThreatSonar Anti-Ransomware
AI Version 3.6.0

Affected Products

  • TeamT5 ThreatSonar Anti-Ransomware 3.6.0

Additional Information

CWE List CWE-78
Source twcert

Description

ThreatSonar Anti-Ransomware developed by TeamT5 has an OS Command Injection vulnerability, allowing remote attackers with product platform intermediate privileges to inject arbitrary OS commands and execute them on the server, thereby gaining administrative access to the remote host.

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.