CVE-2025-31713
Awaiting Analysis
Awaiting Analysis - Queue
BaseFortify
Publication date: 2025-08-18
Last updated on: 2025-08-18
Assigner: Unisoc
Description
Description
In engineer mode service, there is a possible command injection due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
Currently, no data is known.
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a command injection issue in the engineer mode service caused by improper input validation. It allows an attacker to execute arbitrary commands locally, leading to escalation of privileges without needing additional execution privileges.
How can this vulnerability impact me? :
The vulnerability can lead to local escalation of privilege, meaning an attacker with local access could gain higher privileges on the system, potentially compromising confidentiality, integrity, and availability of the affected system.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70