CVE-2025-0415 CRITICAL

CVE-2025-0415: Command Injection in NTP Setting

Vendor Moxa
Product EDF-G1002-BP Series
Weakness CWE-78
Published April 2, 2025
Last update April 3, 2025
View on NVD All CVEs

CVSS base score

9.2/10
Attack vector Network
Attack complexity Low
Privileges required High
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:H

What the vulnerability does

01Description

A remote attacker with web administrator privileges can exploit the device’s web interface to execute arbitrary system commands through the NTP settings. Successful exploitation may result in the device entering an infinite reboot loop, leading to a total or partial denial of connectivity for downstream systems that rely on its network services.

Key dates

02Disclosure timeline

April 2, 2025 CVE published
April 3, 2025 Record updated

Related vulnerabilities

04Related CVE

CVE-2025-11787 Command injection vulnerability in Circutor SGE-PLC1000/SGE-PLC50 CVE-2025-41674 Remote Command Injection in diagnostic Action Due to Improper Input Neutralization CVE-2024-7120 Raisecom MSG1200/MSG2100E/MSG2200/MSG2300 Web Interface list_base_config.php os command injection CVE-2023-22815 Post-authentication remote command injection vulnerability on Western Digital My Cloud OS 5 devices CVE-2026-40499 radare2 < 6.1.4 Command Injection via PDB Parser print_gvars()