漏洞关键信息 CVE Identifier: CVE-2025-13799 Vendor Device: ADSLR NBR1005GPEV2 250814-R037C Affected File: Affected Function: Vulnerability Type: Command Injection CVSS Meta Temp Score: 6.0 Exploit Price: $0-$5k CTI Interest Score: 1.64 Exploitability: Easy Remote Attack: Possible CVE Classification: CWE-77 Summary A critical command injection vulnerability was found in the function of the file in the specified device. Manipulating the argument can lead to a command injection attack. Details This vulnerability is classified under CWE-77, where the product constructs a command using external input without proper validation, leading to command injection. The vulnerability can affect confidentiality, integrity, and availability. The advisory is available at notion.so, and an exploit is known to be publicly available.