CVE-2025-54769

HIGH

lpar2rrd < 8.04 - Authenticated Directory Traversal and Remote Code Execution via File Upload

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2025-54769. PoCs published by Byte Reaper, byteReaper77.

AI-analyzed exploit summary This exploit targets CVE-2025-54769 in LPAR2RRD 8.04, leveraging a directory traversal vulnerability to upload a malicious Perl script via the upgrade endpoint, then executing it to achieve remote code execution (RCE). The PoC includes a Perl payload that runs the 'whoami' command and uses cURL for HTTP requests.

Description

An authenticated, read-only user can upload a file and perform a directory traversal to have the uploaded file placed in a location of their choosing. This can be used to overwrite existing PERL modules within the application to achieve remote code execution (RCE) by an attacker.

Exploits (2)

exploitdb WORKING POC

by Byte Reaper · cwebappsmultiple

https://www.exploit-db.com/exploits/52391

View Code ZIP pw:eip

This exploit targets CVE-2025-54769 in LPAR2RRD 8.04, leveraging a directory traversal vulnerability to upload a malicious Perl script via the upgrade endpoint, then executing it to achieve remote code execution (RCE). The PoC includes a Perl payload that runs the 'whoami' command and uses cURL for HTTP requests.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: LPAR2RRD 8.04

No auth needed

Prerequisites: Network access to the LPAR2RRD upgrade endpoint · LPAR2RRD 8.04 installed and running

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec WORKING POC 2 stars

by byteReaper77 · poc

https://github.com/byteReaper77/CVE-2025-54769

View Code ZIP pw:eip

The repository contains a functional exploit for CVE-2025-54769, targeting LPAR2RRD via a directory traversal and RCE vulnerability in the /lpar2rrd-cgi/upgrade.sh endpoint. The exploit uploads a malicious Perl CGI script, leverages path traversal to place it in an executable directory, and triggers remote command execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: LPAR2RRD (version not specified)

No auth needed

Prerequisites: Network access to the vulnerable LPAR2RRD instance · Target endpoint /lpar2rrd-cgi/upgrade.sh must be accessible

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit, Third Party Advisory third-party-advisory

https://korelogic.com/Resources/Advisories/KL-001-2025-016.txt

Release Notes release-notes

https://lpar2rrd.com/note800.php

Mailing List

http://seclists.org/fulldisclosure/2025/Jul/19

Scores

CVSS v3 8.8

EPSS 0.0934

EPSS Percentile 93.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-648 CWE-434 CWE-24

Status published

Products (1)

xorux/lpar2rrd < 8.04

Published Jul 29, 2025

Tracked Since Feb 18, 2026