{"uuid": "59c1015b-e9f6-490c-be9b-06140242b143", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20016", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/1472", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-20016\n\ud83d\udd39 Description: OS command injection vulnerability exists in network storage servers STEALTHONE D220/D340/D440 provided by Y'S corporation. A user with an administrative privilege who logged in to the web management page of the affected product may execute an arbitrary OS command.\n\ud83d\udccf Published: 2025-01-14T09:32:33.704Z\n\ud83d\udccf Modified: 2025-01-14T09:32:33.704Z\n\ud83d\udd17 References:\n1. https://stealthone.net/product_info/d220-d340%e3%80%8cv6-03-03%e3%80%8d%e5%8f%8a%e3%81%b3d440%e3%80%8cv7-00-11%e3%80%8d%e3%83%95%e3%82%a1%e3%83%bc%e3%83%a0%e3%82%a6%e3%82%a7%e3%82%a2%e3%82%92%e3%83%aa%e3%83%aa%e3%83%bc%e3%82%b9%e8%87%b4/\n2. https://jvn.jp/en/vu/JVNVU99653331/", "creation_timestamp": "2025-01-14T10:21:57.000000Z"}