ByteOS Network

NVD Vulnerability Details :

CVE-2025-4635

Awaiting Analysis

Source-cve_disclosure@tech.gov.sg

Published At-30 May, 2025 | 09:15

Updated At-30 May, 2025 | 16:31

A malicious user with administrative privileges in the web portal would be able to manipulate the Diagnostics module to obtain remote code execution on the local device as a low privileged user.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	3.1	6.6	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L

Weaknesses

CWE ID	Type	Source
CWE-20	Secondary	cve_disclosure@tech.gov.sg

References

Hyperlink	Source	Resource
https://jct-aq.com/products/airpointer2d/	cve_disclosure@tech.gov.sg	N/A

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History