CVE-2025-49163 | Arris VIP1113 up to 2025-05-30 KreaTV SDK /usr/bin/gunzip improper protection of alternate path

Inserito da Angelo Barbosa | Giu 3, 2025 | CVE

A vulnerability was found in Arris VIP1113 up to 2025-05-30. It has been rated as critical. Affected by this issue is some unknown functionality of the file /usr/bin/gunzip of the component KreaTV SDK. The manipulation leads to improper protection of alternate path.

This vulnerability is handled as CVE-2025-49163. It is possible to launch the attack on the local host. There is no exploit available.

CVE-2025-49163 | Arris VIP1113 up to 2025-05-30 KreaTV SDK /usr/bin/gunzip improper protection of alternate path

Post correlati

CVE-2024-29781 | Google Android ss_OssAsnManagement.c ss_AnalyzeOssReturnResUssdArgIe out-of-bounds

CVE-2024-41270 | Gorush 1.18.4 RunHTTPServer certificate validation

CVE-2024-25350 | PHPGurukul Zoo Management System 1.0 edit-ticket.php tickettype/tprice sql injection

CVE-2024-30268 | Cacti 1.3.x DEV cross site scripting