CVE-2025-64127 – Zenitel TCIV-3+ OS Command Injection

CVE ID : CVE-2025-64127

Published : Nov. 26, 2025, 5:50 p.m. | 32 minutes ago

Description : An OS command injection vulnerability exists due to insufficient
sanitization of user-supplied input. The application accepts parameters
that are later incorporated into OS commands without adequate
validation. This could allow an unauthenticated attacker to execute
arbitrary commands remotely.

Severity: 10.0 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…