CVE-2025-46271
CRITICALUNI-NMS-Lite - Command Injection
Title source: llmDescription
UNI-NMS-Lite is vulnerable to a command injection attack that could allow an unauthenticated attacker to read or manipulate device data.
Exploits (1)
nomisec
WORKING POC
1 stars
by 1Altruist · poc
https://github.com/1Altruist/CVE-2025-46271-Reverse-Shell-PoC
Scores
CVSS v3
9.1
EPSS
0.0574
EPSS Percentile
90.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Details
CWE
CWE-78
Status
published
Products (1)
Planet Technology/UNI-NMS-Lite
< 1.0b211018
Published
Apr 24, 2025
Tracked Since
Feb 18, 2026