Description

A command injection vulnerability in the szc script of the ccurtsinger/stabilizer repository allows remote attackers to execute arbitrary system commands via unsanitized user input passed to os.system(). The vulnerability arises from improper input handling where command-line arguments are directly concatenated into shell commands without validation

INFO

Published Date :

2026-03-03T00:00:00.000Z

Last Modified :

2026-03-03T15:40:44.291Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2025-52365 vulnerability.

No data.

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-52365.

URL Resource
https://github.com/ccurtsinger/stabilizer/ cve-icon cve-icon
https://github.com/ccurtsinger/stabilizer/blob/master/szc cve-icon cve-icon
https://github.com/h1dr1/CVE_Research/blob/main/CVE-2025-52365.md cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System