Vulnerability Description
An OS command injection vulnerability exists in EnGenius EnShare Cloud Service version 1.4.11 and earlier. The usbinteract.cgi script fails to properly sanitize user input passed to the path parameter, allowing unauthenticated remote attackers to inject arbitrary shell commands. The injected commands are executed with root privileges, leading to full system compromise. Exploitation evidence was observed by the Shadowserver Foundation on 2024-12-05 UTC.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Engeniustech | Esr300 Firmware | 1.1.0.28 |
| Engeniustech | Esr300 | - |
| Engeniustech | Esr350 Firmware | 1.1.0.29 |
| Engeniustech | Esr350 | - |
| Engeniustech | Esr600 Firmware | 1.1.0.50 |
| Engeniustech | Esr600 | - |
| Engeniustech | Esr900 Firmware | 1.1.0 |
| Engeniustech | Esr900 | - |
| Engeniustech | Esr1200 Firmware | 1.1.0 |
| Engeniustech | Esr1200 | - |
| Engeniustech | Esr1750 Firmware | 1.1.0 |
| Engeniustech | Esr1750 | - |
| Engeniustech | Epg5000 Firmware | 1.2.0 |
| Engeniustech | Epg5000 | - |
Related Weaknesses (CWE)
References
- https://cxsecurity.com/issue/WLB-2017060050ExploitThird Party Advisory
- https://packetstormsecurity.com/files/142792Broken Link
- https://vulncheck.com/advisories/engenius-enshare-iot-gigabit-cloud-serviceThird Party Advisory
- https://www.exploit-db.com/exploits/42114ExploitThird Party Advisory
- https://www.zeroscience.mk/en/vulnerabilities/ZSL-2017-5413.phpExploitThird Party Advisory
- https://www.zeroscience.mk/en/vulnerabilities/ZSL-2017-5413.phpExploitThird Party Advisory
FAQ
What is CVE-2025-34035?
CVE-2025-34035 is a vulnerability with a CVSS score of 9.8 (CRITICAL). An OS command injection vulnerability exists in EnGenius EnShare Cloud Service version 1.4.11 and earlier. The usbinteract.cgi script fails to properly sanitize user input passed to the path parameter...
How severe is CVE-2025-34035?
CVE-2025-34035 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2025-34035?
Check the references section above for vendor advisories and patch information. Affected products include: Engeniustech Esr300 Firmware, Engeniustech Esr300, Engeniustech Esr350 Firmware, Engeniustech Esr350, Engeniustech Esr600 Firmware.