2 matches found
CVE-2025-3705 OS Command Injection via USB Config Load
A physical attacker with no privileges can gain full control of the affected device due to improper neutralization of special elements used in an OS Command 'OS Command Injection' when loading a config file from a USB drive...
CVE-2025-3705
CVE-2025-3705 describes an OS Command Injection vulnerability: loading a config file from a USB drive allows a physical attacker with no privileges to execute commands and gain full control of the affected device. Documents identify Frauscher Sensortechnik products (e.g., FDS101, FDS102, FDS-SNMP...