2 matches found
CVE-2025-13087
A vulnerability exists in the Opto22 Groov Manage REST API on GRV-EPIC and groov RIO Products that allows remote code execution with root privileges. When a POST request is executed against the vulnerable endpoint, the application reads certain header details and unsafely uses these values to bui...
CVE-2025-13087
CVE-2025-13087 describes a command-injection vulnerability in Opto22 Groov Manage REST API used on GRV-EPIC and groov RIO products. A POST request to a vulnerable endpoint reads header details and unsafely uses those values to build commands, allowing an attacker with administrative privileges to...