2 matches found
CVE-2025-26817
CVE-2025-26817 affects Netwrix Password Secure, version 9.2.0.32454, with an OS command injection vulnerability. The CVSS 3.1 vector (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) yields a base score of 9.8 (CRITICAL). Exploitation is network-based, with no user interaction required and no privileges need...
CVE-2025-26818
CVE-2025-26818 affects Netwrix Password Secure (versions 9.2 and older). The vulnerability is a command injection flaw with a CVSS v3.1 base score 9.8 (NETWORK, HIGH impact on confidentiality, integrity, and availability). Root cause details across connected docs cite command execution possibilit...