CVE-2025-7769

HIGH

Tigo Energy's CCA - Command Injection

Title source: llm

Description

Tigo Energy's CCA is vulnerable to a command injection vulnerability in the /cgi-bin/mobile_api endpoint when the DEVICE_PING command is called, allowing remote code execution due to improper handling of user input. When used with default credentials, this enables attackers to execute arbitrary commands on the device that could cause potential unauthorized access, service disruption, and data exposure.

Exploits (2)

exploitdb WORKING POC

by Byte Reaper · cremotemultiple

https://www.exploit-db.com/exploits/52404

View Code ZIP pw:eip

nomisec WORKING POC 1 stars

by byteReaper77 · poc

https://github.com/byteReaper77/CVE-2025-7769

View Code ZIP pw:eip

References (1)

[Third Party Advisory, US Government Resource] https://www.cisa.gov/news-events/ics-advisories/icsa-25-217-02

Scores

CVSS v4 8.7

EPSS 0.0430

EPSS Percentile 88.9%

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Details

CWE

CWE-77

Status published

Products (1)

Tigo Energy/Cloud Connect Advanced < 4.0.1

Published Aug 06, 2025

Tracked Since Feb 18, 2026