Description
Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the Administration WebUI in Waterfall WF-500 TX Host in version 7.9.1.0 R2502171040 that allows remote authenticated attackers to execute arbitrary operating system commands on the WF-500 TX Host.
Published: 2026-05-29
Score: 8.6 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

Nozomi Networks Labs reported an OS Command Injection flaw in the Administration WebUI of the Waterfall WF‑500 TX Host, identified as CWE‑78. The vulnerability permits a remote authenticated attacker to supply input that is unsafely added to operating‑system commands, enabling the execution of arbitrary commands on the device. If exploited, the attacker could gain full control of the device, compromise the hostname, and potentially access or modify any data stored on the host.

Affected Systems

Waterfall “Waterfall WF‑500” TX Host, version 7.9.1.0 R2502171040, is affected. The issue resides in the administrative web interface exposed to authenticated users on this specific build.

Risk and Exploitability

The CVSS score for this vulnerability is 8.6, indicating a high severity rating. The EPSS score is unavailable, and the vulnerability is not listed in CISA’s KEV catalog. Because the flaw requires authentication and is accessible via the remote Administration WebUI, an attacker who can gain or already possesses valid credentials can exploit the command injection by crafting malicious input within that authenticated session. This could lead to remote code execution and full system compromise, though no public exploit has been reported at this time.

Generated by OpenCVE AI on May 29, 2026 at 12:27 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply any firmware or software patches released by Nozomi Networks that resolve the OS Command Injection in the WF‑500 TX Host.
  • Restrict network access to the Administration WebUI by limiting it to known administrators or internal IP ranges, and block unused remote access channels.
  • Continuously monitor system logs for suspicious command invocations or anomalous administrative activity to detect attempted exploitation.

Generated by OpenCVE AI on May 29, 2026 at 12:27 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 29 May 2026 16:00:00 +0000

Type Values Removed Values Added
First Time appeared Waterfall
Waterfall wf-500
Vendors & Products Waterfall
Waterfall wf-500

Fri, 29 May 2026 12:45:00 +0000

Type Values Removed Values Added
Title OS Command Injection in Waterfall WF-500 Administration WebUI Allows Remote Authenticated Execution

Fri, 29 May 2026 11:45:00 +0000

Type Values Removed Values Added
Description Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the Administration WebUI in Waterfall WF-500 TX Host in version 7.9.1.0 R2502171040 that allows remote authenticated attackers to execute arbitrary operating system commands on the WF-500 TX Host.
Weaknesses CWE-78
References
Metrics cvssV4_0

{'score': 8.6, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

Waterfall Wf-500
cve-icon MITRE

Status: PUBLISHED

Assigner: Nozomi

Published:

Updated: 2026-05-29T14:36:09.993Z

Reserved: 2025-04-16T09:53:41.253Z

Link: CVE-2025-41265

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-29T12:16:21.743

Modified: 2026-05-29T14:06:26.220

Link: CVE-2025-41265

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-29T15:47:09Z

Weaknesses