ByteOS Network

NVD Vulnerability Details :

CVE-2025-47228

Awaiting Analysis

Source-cve@mitre.org

Published At-05 Jul, 2025 | 03:15

Updated At-08 Jul, 2025 | 16:18

In the Production Environment extension in Netmake ScriptCase through 9.12.006 (23), shell injection in the SSH connection settings allows authenticated attackers to execute system commands via crafted HTTP requests.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	3.1	6.7	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L

Type: Secondary

Version: 3.1

Base score: 6.7

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L

Weaknesses

CWE ID	Type	Source
CWE-78	Secondary	cve@mitre.org

CWE ID: CWE-78

Type: Secondary

Source: cve@mitre.org

References

Hyperlink	Source	Resource
https://github.com/synacktiv/CVE-2025-47227_CVE-2025-47228	cve@mitre.org	N/A
https://www.scriptcase.net/changelog/	cve@mitre.org	N/A
https://www.synacktiv.com/advisories/scriptcase-pre-authenticated-remote-command-execution	cve@mitre.org	N/A
https://github.com/synacktiv/CVE-2025-47227_CVE-2025-47228	134c704f-9b21-4f2e-91b3-4a467353bcc0	N/A