CL4/6NX Plus

CVEs (2)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2025-22470	SATO CL4/6NX Plus	Cri	0.64	9.8	0.00		Aug 6, 2025	CL4/6NX Plus and CL4/6NX-J Plus (Japan model) with the firmware versions prior to 1.15.5-r1 allow crafted dangerous files to be uploaded. An arbitrary Lua script may be executed on the system with the root privilege.
CVE-2025-22469	SATO CL4/6NX Plus	Hig	0.48	7.3	0.01		Aug 6, 2025	OS command injection vulnerability exists in CL4/6NX Plus and CL4/6NX-J Plus (Japan model) with the firmware versions prior to 1.15.5-r1. An arbitrary OS command may be executed on the system with a certain non-administrative user privilege.

CVE-2025-22470CriAug 6, 2025
SATO
CL4/6NX Plus
risk 0.64cvss 9.8epss 0.00
CL4/6NX Plus and CL4/6NX-J Plus (Japan model) with the firmware versions prior to 1.15.5-r1 allow crafted dangerous files to be uploaded. An arbitrary Lua script may be executed on the system with the root privilege.
CVE-2025-22469HigAug 6, 2025
SATO
CL4/6NX Plus
risk 0.48cvss 7.3epss 0.01
OS command injection vulnerability exists in CL4/6NX Plus and CL4/6NX-J Plus (Japan model) with the firmware versions prior to 1.15.5-r1. An arbitrary OS command may be executed on the system with a certain non-administrative user privilege.