CVE-2025-25504
MEDIUMGefen WebFWC v1.85h v1.86v v1.70 - Unauthenticated Remote Code Execution via TCP Port 4444
Title source: llmDescription
An issue in the /usr/local/bin/jncs.sh script of Gefen WebFWC (In AV over IP products) v1.85h, v1.86v, and v1.70 allows attackers with network access to connect to the device over TCP port 4444 without authentication and execute arbitrary commands with root privileges.
References (2)
Core 2
Core References
Product
http://gefen.com
Exploit, Third Party Advisory
https://www.troy-wilson.com/cve-2025-25504.html
Scores
CVSS v3
6.5
EPSS
0.0034
EPSS Percentile
26.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
total
Details
CWE
CWE-287
CWE-77
Status
published
Products (3)
niceforyou/gefen_webfwc
1.70v
niceforyou/gefen_webfwc
1.85h
niceforyou/gefen_webfwc
1.86v
Published
May 05, 2025
Tracked Since
Feb 18, 2026