CVE-2025-10767 | CosmodiumCS OnlyRAT up to 3.2 Configuration File main.py connect/remote_upload/remote_download configuration[“PASSWORD”] os command injection

A vulnerability classified as problematic was found in CosmodiumCS OnlyRAT up to 3.2. The affected element is the function connect/remote_upload/remote_download of the file main.py of the component Configuration File Handler. The manipulation of the argument configuration[“PASSWORD”] results in os command injection.

This vulnerability is reported as CVE-2025-10767. The attack requires a local approach. Moreover, an exploit is present.

The vendor was contacted early about this disclosure but did not respond in any way.VulDB Recent EntriesRead More