EUVD-2019-16925

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Shell command injection in Systrome devices due to input validation failure in ISP file description.

Reporter	Title	Published	Views	Family All 8
0day.today	SYSTORME ISG Command Injection Vulnerability	13 Feb 201900:00	–	zdt
CVE	CVE-2019-7383	17 Mar 201919:04	–	cve
Cvelist	CVE-2019-7383	17 Mar 201919:04	–	cvelist
NVD	CVE-2019-7383	21 Mar 201916:01	–	nvd
OSV	CVE-2019-7383	21 Mar 201916:01	–	osv
Packet Storm	SYSTORME ISG Command Injection	13 Feb 201900:00	–	packetstorm
Prion	Command injection	21 Mar 201916:01	–	prion
Positive Technologies	PT-2019-18568 · Systrome · Systrome Cumilon	17 Mar 201900:00	–	ptsecurity

[
  {
    "enisaIdVendor": [
      {
        "id": "404db89f-9360-373c-b711-3fdf32d466ec",
        "vendor": {
          "name": "n/a"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "7d54a3b5-bdd1-3959-9926-4be80d3b4e04",
        "product": {
          "name": "n/a"
        },
        "product_version": "n/a"
      }
    ]
  }
]

Source	Link
packetstormsecurity	www.packetstormsecurity.com/files/cve/CVE-2019-7383
packetstormsecurity	www.packetstormsecurity.com/files/151648/SYSTORME-ISG-Command-Injection.html
seclists	www.seclists.org/fulldisclosure/2019/Feb/32
securityfocus	www.securityfocus.com/bid/107035
s3curityb3ast	www.s3curityb3ast.github.io/KSA-Dev-003.md
breakthesec	www.breakthesec.com/2019/02/cve-2019-7383-remote-code-execution-via.html
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

7.6High risk

Vulners AI Score7.6

CVSS 3.17.8

CVSS 27.2

EPSS0.00306