CVE-2025-34116 | IPFire up to 2.18 CGI Interface proxy.cgi os command injection (EUVD-2025-21433 / EDB-39765)

A vulnerability has been found in IPFire up to 2.18 and classified as critical. This vulnerability affects unknown code of the file proxy.cgi of the component CGI Interface. The manipulation leads to os command injection.

This vulnerability was named CVE-2025-34116. The attack can be initiated remotely. Furthermore, there is an exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More