1. Home
  2. CVE Database
  3. CVE-2025-13658
NONE · 0

CVE-2025-13658

A vulnerability in Longwatch devices allows unauthenticated HTTP GET requests to execute arbitrary code via an exposed endpoint, due to the absence of code signing and execution controls. Exploitation...

Vulnerability Description

A vulnerability in Longwatch devices allows unauthenticated HTTP GET requests to execute arbitrary code via an exposed endpoint, due to the absence of code signing and execution controls. Exploitation results in SYSTEM-level privileges.

Related Weaknesses (CWE)

CWE-94

References

FAQ

What is CVE-2025-13658?

CVE-2025-13658 is a documented vulnerability. A vulnerability in Longwatch devices allows unauthenticated HTTP GET requests to execute arbitrary code via an exposed endpoint, due to the absence of code signing and execution controls. Exploitation...

How severe is CVE-2025-13658?

CVSS scoring is not yet available for CVE-2025-13658. Check NVD for updates.

Is there a patch for CVE-2025-13658?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.