cbcvebase.
CVE-2025-64128
published 2025-11-26

CVE-2025-64128: An OS command injection vulnerability exists due to incomplete validation of user-supplied input. Validation fails to enforce sufficient formatting rules…

PriorityP275critical10CVSS 3.1
AVNACLPRNUINSCCHIHAH
EPSS
2.28%
80.9th percentile
An OS command injection vulnerability exists due to incomplete validation of user-supplied input. Validation fails to enforce sufficient formatting rules, which could permit attackers to append arbitrary data. This could allow an unauthenticated attacker to inject arbitrary commands.

Affected

1 ranges
VendorProductVersion rangeFixed in
zeniteltciv-3<= 9.3.3.0

Detection & IOCsextracted from sources · hover to see the quote

  • CVE-2025-64128 affects Zenitel TCIV-3+ (all versions prior to 9.3.3.0): OS command injection via incomplete validation of user-supplied input that fails to enforce sufficient formatting rules, permitting attackers to append arbitrary data — exploitable remotely with no authentication required
  • Attack vector is network (AV:N), no authentication required (PR:N), no user interaction (UI:N) — prioritize detection of unauthenticated remote requests to Zenitel TCIV-3+ management interfaces that contain shell metacharacters or command-appending sequences in user-supplied parameters
  • Zenitel TCIV-3+ devices should be monitored for unexpected OS command execution originating from web/API parameters; the vulnerability class (CWE-78) suggests injected commands may be appended to existing OS command strings via characters such as semicolons, pipes, or backticks
  • ·No known public exploitation has been reported at time of advisory publication; no specific exploit code, payload samples, or IOCs (hashes, IPs, domains, URLs) were disclosed in the available sources
  • ·All versions of Zenitel TCIV-3+ prior to 9.3.3.0 are affected; patched version is 9.3.3.0 or later — version fingerprinting of exposed devices is recommended to prioritize remediation

CVSS provenance

nvdv3.110.0CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
nvdv4.010.0CRITICALCVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:L/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.