// For flags

CVE-2025-25872

OpenPanel 0.3.4 Remote Code Execution

Severity Score

"-"
*CVSS v-

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

1
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

An issue in Open Panel v.0.3.4 allows a remote attacker to escalate privileges via the Fix Permissions function

OpenPanel version 0.3.4 suffers from a remote code execution vulnerability via /fix-permissions.

*Credits: N/A
CVSS Scores
Attack Vector
-
Attack Complexity
-
Privileges Required
-
User Interaction
-
Scope
-
Confidentiality
-
Integrity
-
Availability
-
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2025-02-07 CVE Reserved
  • 2025-03-05 CVE Published
  • 2025-03-14 CVE Updated
  • 2025-03-14 First Exploit
  • ---------- EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
---- -