CVE-2026-25817HIGH 8.8EPSS p51.5%

CVE-2026-25817CVE-2026-25817

Description

HMS Networks Ewon Flexy with firmware before 15.0s4, Cosy+ with firmware 22.xx before 22.1s6, and Cosy+ with firmware 23.xx before 23.0s3 have improper neutralization of special elements used in an OS command allowing remote code execution by attackers with low privilege access on the gateway, provided the attacker has credentials.

Scoring

CVSS 3.18.8 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS0.79% probability of exploitation · percentile 51.5% · 2026-06-18T12:00:27Z
Published2026-03-13
Last modified2026-04-27

Underlying weaknesses· 1

CWE-94

References

  1. https://hmsnetworks.blob.core.windows.net/nlw/docs/default-source/products/cybersecurity/security-advisory/hms-security-advisory-2026-03-09-001---ewon-several-flexy-and-cosy--vulnerabilities.pdf?sfvrsn=f7c027b8_13
  2. https://www.hms-networks.com/p/flexy20500-00ma-ewon-flexy-205

1

TypeTargetConfidenceTier
WeaknessImproper Control of Generation of Code ('Code Injection')cwe-940%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-25823
CVE
CVE-2026-25818
CVE
CVE-2026-22550
CVE
CVE-2026-20761
CVE
CVE-2026-42062
CVE
CVE-2026-20764
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.