CVE-2025-64128 | Zenitel TCIV-3+ prior 9.3.3.0 os command injection (icsa-25-329-03)

Inserito da Angelo Barbosa | Nov 26, 2025 | CVE

A vulnerability classified as critical has been found in Zenitel TCIV-3+. Impacted is an unknown function. Performing manipulation results in os command injection.

This vulnerability is identified as CVE-2025-64128. The attack can be initiated remotely. There is not any exploit available.

It is recommended to upgrade the affected component.

CVE-2025-64128 | Zenitel TCIV-3+ prior 9.3.3.0 os command injection (icsa-25-329-03)

Post correlati

CVE-2024-13916 | Kruger&Matz com.pri.applock 13 query exposure of sensitive system information to an unauthorized control sphere

CVE-2023-7031 | Avaya Aura Experience Portal Manager up to 8.1.2 information disclosure

CVE-2023-50059 | Ingalxe Galxe platform 1.0 Web3 Authentication information disclosure

CVE-2022-46811 | VillaTheme ALD Plugin up to 1.0.21 on WordPress authorization