Description
Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the Administration WebUI in Waterfall WF-500 RX Host in version 7.9.1.0 R2502171040 that allows remote authenticated attackers to execute arbitrary operating system commands on the WF-500 RX Host.
Published: 2026-05-29
Score: 8.6 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is an OS Command Injection in the Administration WebUI of Waterfall WF‑500 RX Host. Improper sanitization of user-supplied input allows a remote authenticated attacker to execute arbitrary operating system commands, potentially leading to full system compromise, data exfiltration, or denial of service. The flaw is categorized as CWE‑78.

Affected Systems

Waterfall "WF‑500 RX Host" version 7.9.1.0 R2502171040 is affected. No other products or versions are listed as impacted.

Risk and Exploitability

The CVSS score of 8.6 indicates a high severity. The EPSS score is not available, and the vulnerability is not listed in CISA KEV. Remote exploitation requires authentication to the web management interface, implying that an attacker must possess valid credentials before the attack can succeed. Once authenticated, the attacker can run any OS command with the privileges of the web service.

Generated by OpenCVE AI on May 29, 2026 at 12:21 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update Waterfall WF‑500 to the latest firmware that contains the OS Command Injection fix.
  • If an upgrade is not immediately possible, isolate the device by placing it behind a firewall and restricting access to the web interface to trusted internal networks only.
  • Revoke default or unused account credentials and enforce strong authentication policies to reduce the chance of credential compromise.

Generated by OpenCVE AI on May 29, 2026 at 12:21 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 29 May 2026 16:00:00 +0000

Type Values Removed Values Added
First Time appeared Waterfall
Waterfall wf-500
Vendors & Products Waterfall
Waterfall wf-500

Fri, 29 May 2026 14:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Fri, 29 May 2026 12:45:00 +0000

Type Values Removed Values Added
Title OS Command Injection in Waterfall WF-500 Administration WebUI Allows Remote Authenticated RCE

Fri, 29 May 2026 11:45:00 +0000

Type Values Removed Values Added
Description Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the Administration WebUI in Waterfall WF-500 RX Host in version 7.9.1.0 R2502171040 that allows remote authenticated attackers to execute arbitrary operating system commands on the WF-500 RX Host.
Weaknesses CWE-78
References
Metrics cvssV4_0

{'score': 8.6, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

Waterfall Wf-500
cve-icon MITRE

Status: PUBLISHED

Assigner: Nozomi

Published:

Updated: 2026-05-29T13:38:35.939Z

Reserved: 2025-04-16T09:53:43.283Z

Link: CVE-2025-41279

cve-icon Vulnrichment

Updated: 2026-05-29T13:38:31.299Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-29T12:16:24.420

Modified: 2026-05-29T14:06:47.240

Link: CVE-2025-41279

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-29T15:46:49Z

Weaknesses