Home

Description

An OS command injection vulnerability exists in EnGenius EnShare Cloud Service version 1.4.11 and earlier. The usbinteract.cgi script fails to properly sanitize user input passed to the path parameter, allowing unauthenticated remote attackers to inject arbitrary shell commands. The injected commands are executed with root privileges, leading to full system compromise. Exploitation evidence was observed by the Shadowserver Foundation on 2024-12-05 UTC.

PUBLISHED Reserved 2025-04-15 | Published 2025-06-24 | Updated 2026-04-07 | Assigner VulnCheck




CRITICAL: 10.0CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

Problem types

CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

Product status

Default status
unaffected

Any version
affected

Credits

Gjoko Krstic finder

References

www.zeroscience.mk/en/vulnerabilities/ZSL-2017-5413.php exploit

www.zeroscience.mk/en/vulnerabilities/ZSL-2017-5413.php third-party-advisory exploit

www.exploit-db.com/exploits/42114 third-party-advisory exploit

packetstormsecurity.com/files/142792 third-party-advisory exploit

cxsecurity.com/issue/WLB-2017060050 third-party-advisory exploit

vulncheck.com/.../engenius-enshare-iot-gigabit-cloud-service third-party-advisory

cve.org (CVE-2025-34035)

nvd.nist.gov (CVE-2025-34035)

Download JSON