CVE-2025-15081 | JD Cloud BE6500 4.4.1.r4308 /jdcapi sub_4780 ddns_name command injection

Inserito da Angelo Barbosa | Dic 25, 2025 | CVE

A vulnerability classified as critical was found in JD Cloud BE6500 4.4.1.r4308. This issue affects the function sub_4780 of the file /jdcapi. Such manipulation of the argument ddns_name leads to command injection.

This vulnerability is listed as CVE-2025-15081. The attack may be performed from remote. In addition, an exploit is available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-15081 | JD Cloud BE6500 4.4.1.r4308 /jdcapi sub_4780 ddns_name command injection

Post correlati

CVE-2024-27154 | Toshiba Tec e-Studio Multi-Function Peripheral log file

CVE-2024-47634 | Streamline CartBounty Plugin up to 8.2 on WordPress cross-site request forgery

CVE-2025-47354 | Qualcomm Snapdragon Compute FastConnect 6200 up to WSA8845 DSP Service use after free

CVE-2024-2340 | Avada Plugin up to 7.11.6 on WordPress information disclosure