Full Report
SQL Injection (CVE-2025-10095) has been found in SMSEagle firmware.
Analysis Summary
# Vulnerability: SQL Injection in SMSEagle Firmware SMPP Server
## CVE Details
- CVE ID: CVE-2025-10095
- CVSS Score: *Score not explicitly provided in the text* (Severity not explicitly provided; assumed Medium/High due to SQLi)
- CWE: CWE-89 (Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'))
## Affected Systems
- Products: SMSEagle firmware
- Versions: All versions before 6.11
- Configurations: Affects the SMPP server component.
## Vulnerability Description
A SQL Injection vulnerability exists within the SMPP server component of the SMSEagle firmware. This flaw is caused by improper sanitization of user-supplied input in the scripts handling database interactions within the SMPP server. The vulnerability is isolated to the dedicated database used by the SMPP server, meaning it does not directly affect the main software's database.
## Exploitation
- Status: *Status unknown based on provided text (assumed not exploited in the wild)*
- Complexity: *Complexity unknown based on provided text*
- Attack Vector: *Attack vector unknown based on provided text, but typically Network for server components*
## Impact
- Confidentiality: *Impact level unknown, but likely significant if attacker can read/dump/modify database contents.*
- Integrity: *Impact level unknown, but likely significant if attacker can modify database contents.*
- Availability: *Impact level unknown*
## Remediation
### Patches
- SMSEagle firmware version **6.11** and later.
### Workarounds
- No specific workarounds were listed in the advisory text. Users should update to the patched version.
## Detection
- No specific Indicators of Compromise (IoCs) were provided.
- Detection should focus on monitoring the SMSEagle SMPP server logs for unusual database query parameters or unexpected errors related to database interaction.
## References
- Vendor Advisories: Proximus sp. z o.o. disclosure coordinated by CERT Polska.
- Relevant Links:
- Vendor report coordination info: hxxps://cert.pl/en/cvd/
- CVE Record: hxxps://www.cve.org/CVERecord?id=CVE-2025-10095
- CWE-89 Detail: hxxps://cwe.mitre.org/data/definitions/89.html