Command Injection Flaw in Cato Networks' Socket Affects Device Security
CVE-2025-14213
8.3HIGH
What is CVE-2025-14213?
Cato Networks' Socket contains a command injection vulnerability in versions before 25, which can be exploited by an authenticated attacker with access to the Socket web interface. This flaw permits the execution of arbitrary operating system commands with root privileges on the device’s underlying system, posing a significant risk to system integrity and data security.
Affected Version(s)
Socket Linux 24 and below
