Cyber Resilience

CVE-2025-1676

Medium

Published: 25 February 2025

Published
25 February 2025
Modified
29 January 2026
KEV Added
Patch
CVSS Score v4 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0076 73.8th percentile
Risk Priority 11 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2025-1676 is a medium-severity Command Injection (CWE-77) vulnerability in Hzmanyun Education And Training System. Its CVSS base score is 5.3 (Medium).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked in the top 26.2% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-2 (Flaw Remediation).

Deeper analysis

A vulnerability classified as critical exists in hzmanyun Education and Training System 3.1.1. It resides in the pdf2swf function of the /pdf2swf file, where manipulation of the file argument permits OS command injection. The issue is tracked under CWE-77 and CWE-78 and carries a CVSS 5.3 score reflecting network attack vector and low attack complexity.

The flaw can be exploited remotely by an authenticated attacker with low privileges, enabling execution of arbitrary operating system commands that affect confidentiality, integrity, and availability on the target system. Public exploit code has already been disclosed and may be used.

No vendor advisories or patch details appear in the referenced sources. The EPSS score shows only a minor peak and remains low overall.

EU & UK References

Vulnerability details

A vulnerability classified as critical was found in hzmanyun Education and Training System 3.1.1. Affected by this vulnerability is the function pdf2swf of the file /pdf2swf. The manipulation of the argument file leads to os command injection. The attack can…

more

be launched remotely. The exploit has been disclosed to the public and may be used.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
T1059 Command and Scripting Interpreter Execution
Adversaries may abuse command and script interpreters to execute commands, scripts, or binaries.
Why these techniques?

OS command injection in remotely accessible pdf2swf endpoint directly enables exploitation of public-facing application (T1190) and arbitrary command execution via T1059.

Confidence: HIGH · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2025-1947Same product: Hzmanyun Education And Training System
CVE-2025-1946Same product: Hzmanyun Education And Training System
CVE-2025-1555Same product: Hzmanyun Education And Training System
CVE-2025-59736Shared CWE-77, CWE-78
CVE-2025-44015Shared CWE-77, CWE-78
CVE-2025-59740Shared CWE-77, CWE-78
CVE-2026-4585Shared CWE-77, CWE-78
CVE-2026-7698Shared CWE-77, CWE-78
CVE-2026-1544Shared CWE-77, CWE-78
CVE-2025-1536Shared CWE-77, CWE-78

Affected Assets

hzmanyun
education and training system
3.1.1

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly remediates the OS command injection vulnerability in the pdf2swf function by identifying, prioritizing, and applying patches or updates to the affected hzmanyun Education and Training System.

prevent

Prevents command injection by enforcing validation of the 'file' argument to the /pdf2swf endpoint, rejecting or sanitizing inputs that could contain malicious OS commands.

prevent

Limits the scope and impact of injected OS commands by enforcing least privilege on the process handling the pdf2swf function, restricting unauthorized actions even if exploitation occurs.

References