6 matches found
CVE-2025-13087
A vulnerability exists in the Opto22 Groov Manage REST API on GRV-EPIC and groov RIO Products that allows remote code execution with root privileges. When a POST request is executed against the vulnerable endpoint, the application reads certain header details and unsafely uses these values to bui...
EUVD-2025-198362
A vulnerability exists in the Opto22 Groov Manage REST API on GRV-EPIC and groov RIO Products that allows remote code execution with root privileges. When a POST request is executed against the vulnerable endpoint, the application reads certain header details and unsafely uses these values to bui...
CVE-2025-13087
CVE-2025-13087 describes a command-injection vulnerability in Opto22 Groov Manage REST API used on GRV-EPIC and groov RIO products. A POST request to a vulnerable endpoint reads header details and unsafely uses those values to build commands, allowing an attacker with administrative privileges to...
CVE-2025-13087 Command Injection in Opto22 Groov REST API
A vulnerability exists in the Opto22 Groov Manage REST API on GRV-EPIC and groov RIO Products that allows remote code execution with root privileges. When a POST request is executed against the vulnerable endpoint, the application reads certain header details and unsafely uses these values to bui...
CVE-2025-13087 Command Injection in Opto22 Groov REST API
A vulnerability exists in the Opto22 Groov Manage REST API on GRV-EPIC and groov RIO Products that allows remote code execution with root privileges. When a POST request is executed against the vulnerable endpoint, the application reads certain header details and unsafely uses these values to bui...
PT-2025-47634
Name of the Vulnerable Software and Affected Versions Opto22 Groov Manage REST API on GRV-EPIC and groov RIO Products affected versions not specified Description A flaw exists in the Opto22 Groov Manage REST API that could allow for remote code execution with root privileges. The issue arises whe...