{"id":68162,"date":"2025-08-15T11:31:42","date_gmt":"2025-08-15T08:01:42","guid":{"rendered":"https:\/\/afaghhosting.net\/blog\/cve-2025-9016-mechrevo-control-center-gx-powershell-uncontrolled-search-path-vulnerability\/"},"modified":"2025-08-15T11:31:42","modified_gmt":"2025-08-15T08:01:42","slug":"cve-2025-9016-mechrevo-control-center-gx-powershell-uncontrolled-search-path-vulnerability","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/cve-2025-9016-mechrevo-control-center-gx-powershell-uncontrolled-search-path-vulnerability\/","title":{"rendered":"CVE-2025-9016 &#8211; Mechrevo Control Center GX Powershell Uncontrolled Search Path Vulnerability"},"content":{"rendered":"<p><strong>CVE ID : <\/strong>CVE-2025-9016<br \/>\n<br \/>\n<strong>Published : <\/strong> Aug. 15, 2025, 7:15 a.m. | 44\u00a0minutes ago<br \/>\n<br \/>\n<strong>Description : <\/strong>A vulnerability was identified in Mechrevo Control Center GX V2 5.56.51.48. This affects an unknown part of the file C:Program FilesOEM\u673a\u68b0\u9769\u547d\u63a7\u5236\u4e2d\u5fc3AiStoneServiceMyControlCenterCommand of the component Powershell Script Handler. The manipulation leads to uncontrolled search path. Local access is required to approach this attack. The complexity of an attack is rather high. The exploitability is told to be difficult. The exploit has been disclosed to the public and may be used.<br \/>\n<br \/>\n<strong>Severity:<\/strong> 7.3 | HIGH<br \/>\n<br \/>\nVisit the link for more details, such as CVSS details, affected products, timeline, and more&#8230;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CVE ID : CVE-2025-9016 Published : Aug. 15, 2025, 7:15 a.m. | 44\u00a0minutes ago Description : A vulnerability was identified in Mechrevo Control Center GX V2 5.56.51.48. This affects an unknown part of the file C:Program FilesOEM\u673a\u68b0\u9769\u547d\u63a7\u5236\u4e2d\u5fc3AiStoneServiceMyControlCenterCommand of the component Powershell Script Handler. The manipulation leads to uncontrolled search path. Local access is required to &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-68162","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/68162","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=68162"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/68162\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=68162"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=68162"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=68162"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}