5Vtechnologies Blue Angel Software Suite vulnerabilities
2 known vulnerabilities affecting 5vtechnologies/blue_angel_software_suite.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
2
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2025-34034P1HIGHCVSS 8.8Exploitedv02025-06-24
CVE-2025-34034 [HIGH] CWE-798 CVE-2025-34034: A hardcoded credential vulnerability exists in the Blue Angel Software Suite deployed on embedded Li
A hardcoded credential vulnerability exists in the Blue Angel Software Suite deployed on embedded Linux systems. The application contains multiple known default and hardcoded user accounts that are not disclosed in public documentation. These accounts allow unauthenticated or low-privilege attackers to gain administrative access to the device’s web in
nvd
CVE-2025-34033P1HIGHCVSS 8.8Exploitedv02025-06-24
CVE-2025-34033 [HIGH] CWE-78 CVE-2025-34033: An OS command injection vulnerability exists in the Blue Angel Software Suite running on embedded Li
An OS command injection vulnerability exists in the Blue Angel Software Suite running on embedded Linux devices via the ping_addr parameter in the webctrl.cgi script. The application fails to properly sanitize input before passing it to the system-level ping command. An authenticated attacker can inject arbitrary commands by appending shell metacharact
nvd