ByteOS Network

NVD Vulnerability Details :

CVE-2025-43946

Analyzed

Source-cve@mitre.org

Published At-22 Apr, 2025 | 18:16

Updated At-23 Jun, 2025 | 18:03

TCPWave DDI 11.34P1C2 allows Remote Code Execution via Unrestricted File Upload (combined with Path Traversal).

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Type	Version	Base score	Base severity	Vector
Secondary	3.1	9.8	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

tcpwave>>ddi>>Versions up to 11.34p1c2(inclusive)

CWE ID	Type	Source
CWE-434	Secondary	134c704f-9b21-4f2e-91b3-4a467353bcc0

Hyperlink	Source	Resource
https://github.com/Henkel-CyberVM/CVEs/tree/main/CVE-2025-43946	cve@mitre.org	Exploit Third Party Advisory
https://tcpwave.com/ddi-dns-dhcp-ipam	cve@mitre.org	Product