CVE-2025-13605

Vulnerability Description

3onedata modbus gateway device model GW1101-1D(RS-485)-TB-P (hardware version V2.2.0) allows authenticated users to execute arbitrary shell commands in the context of the root user by providing payload in the "IP address" field of the diagnosis test tools. This issue has been resolved in firmware version 3.0.59B2024080600R4353

Related Weaknesses (CWE)

CWE-78

References

https://cert.pl/en/posts/2026/05/CVE-2025-13605

FAQ

What is CVE-2025-13605?

CVE-2025-13605 is a documented vulnerability. 3onedata modbus gateway device model GW1101-1D(RS-485)-TB-P (hardware version V2.2.0) allows authenticated users to execute arbitrary shell commands in the context of the root user by providing payloa...

How severe is CVE-2025-13605?

CVSS scoring is not yet available for CVE-2025-13605. Check NVD for updates.

Is there a patch for CVE-2025-13605?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.