VYPR

EnShare Cloud Service

by EnGenius

CVEs (1)

  • CVE-2025-34035CriJun 24, 2025
    risk 0.65cvss 9.8epss 0.12

    An OS command injection vulnerability exists in EnGenius EnShare Cloud Service version 1.4.11 and earlier. The usbinteract.cgi script fails to properly sanitize user input passed to the path parameter, allowing unauthenticated remote attackers to inject arbitrary shell commands.…