CVE-2025-56425 | optimal-systems enaio 10.10/11.0/11.10 AppConnector sendmail command injection

Inserito da Angelo Barbosa | Gen 8, 2026 | CVE

A vulnerability, which was classified as critical, has been found in optimal-systems enaio 10.10/11.0/11.10. This vulnerability affects unknown code of the file /osrest/api/organization/sendmail of the component AppConnector. The manipulation leads to command injection.

This vulnerability is referenced as CVE-2025-56425. Remote exploitation of the attack is possible. No exploit is available.

CVE-2025-56425 | optimal-systems enaio 10.10/11.0/11.10 AppConnector sendmail command injection

Post correlati

CVE-2024-50038 | Linux Kernel up to 5.15.167/6.1.112/6.6.56/6.11.3 xt_cluster.c skb_network_header stack-based overflow

CVE-2025-0803 | Codezips Gym Management System 1.0 submit_plan_new.php planid sql injection

CVE-2025-47360 | Qualcomm Snapdragon Auto up to SRV1M Client Message stack-based overflow

CVE-2024-37942 | Berqier BerqWP Plugin up to 1.7.5 on WordPress server-side request forgery