CVE-2025-6522 – Sight Bulb Pro Root Shell Command Injection Vulnerability

June 27, 2025

CVE ID : CVE-2025-6522

Published : June 27, 2025, 6:15 p.m. | 57 minutes ago

Description : Unauthenticated users on an adjacent network with the Sight Bulb Pro can
run shell commands as root through a vulnerable proprietary TCP
protocol available on Port 16668. This vulnerability allows an attacker
to run arbitrary commands on the Sight Bulb Pro by passing a well formed
JSON string.

Severity: 5.4 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous Articlerwasa is a full-featured high performance web server

Next Article CVE-2025-5310 – Dover Fueling Solutions ProGauge MagLink LX Consoles Unauthenticated Remote Code Execution

How AI further empowers value stream management

12 Top ReactJS Development Companies in 2025

Not sure where to go with AI? Here’s your roadmap.

This week in AI dev tools: A2A donated to Linux Foundation, OpenAI adds Deep Research to API, and more (June 27, 2025)

The next big HDMI leap has arrived – here’s how these 16K cables will shake things up

Here’s how you can still trade in any phone at Verizon to get an iPhone, iPad, and Apple Watch free

Anthropic has a plan to combat AI-triggered job losses predicted by its CEO

Forget Google and Microsoft: OpenAI may be building the ultimate work suite of apps and services

Say hello to ECMAScript 2025

Say hello to ECMAScript 2025

Ecma International approves ECMAScript 2025: What’s new?

Building Together: PRFT Colleagues Volunteer with Atlanta Habitat for Humanity

Fix Elden Ring Nightreign Connection Errors And Server Login Failure PC

Fix Elden Ring Nightreign Connection Errors And Server Login Failure PC

Fix Now EAC Error 20006 in Elden Ring: Nightreign [6 Easy Tricks]

Fix Now Elden Ring Nightreign EAC Error 30005 (CreateFile Failed)

CVE-2025-6522 – Sight Bulb Pro Root Shell Command Injection Vulnerability

New Linux Flaws Enable Full Root Access via PAM and Udisks Across Major Distributions

⚡ Weekly Recap: Chrome 0-Day, 7.3 Tbps DDoS, MFA Bypass Tricks, Banking Trojan and More

Cybercrime deterrence: 6 important steps

CVE-2025-0917 – IBM Cognos Analytics Stored Cross-Site Scripting

How to Build an Asynchronous AI Agent Network Using Gemini for Research, Analysis, and Validation Tasks

DslogdRAT Malware: A Sneaky Cyberattack Exploiting Ivanti ICS Zero-Day

Fix Ubisoft Connect Installer NSIS Error

CVE-2025-5867 – RT-Thread Null Pointer Dereference Vulnerability

CVE-2025-2905 (CVSS 9.1): Critical XXE Vulnerability Found in WSO2 API Manager

BeyondTrust warns of pre-auth RCE in Remote Support software

CVE-2025-6522 – Sight Bulb Pro Root Shell Command Injection Vulnerability

Related Posts