OS Command Injection

A vulnerability that allows an attacker to execute arbitrary operating system commands.

ThinPLUS OS Command Injection Vulnerability (CVE-2025-13284)

Nov 17, 2025

—

by

Lara De Jong

in Cyber News & Updates

A critical OS Command Injection vulnerability (CVE-2025-13284) in ThinPLUS allows unauthenticated remote attackers to execute arbitrary commands, posing significant risks to system integrity. TWCERT/CC urges immediate patching.