CVE-2025-9176 – Neurobin shc OS Command Injection Vulnerability

August 19, 2025

CVE ID : CVE-2025-9176

Published : Aug. 20, 2025, 12:15 a.m. | 1 hour, 28 minutes ago

Description : A security flaw has been discovered in neurobin shc up to 4.0.3. Impacted is the function make of the file src/shc.c of the component Environment Variable Handler. The manipulation results in os command injection. The attack is only possible with local access. The exploit has been released to the public and may be exploited.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-9193 – TOTVS Portal Meu RH Open Redirect Vulnerability

Next Article CVE-2025-9175 – Neurobin SHC Stack-Based Buffer Overflow

Stop writing tests: Automate fully with Generative AI

Opsera’s Codeglide.ai lets developers easily turn legacy APIs into MCP servers

Black Duck Security GitHub App, NuGet MCP Server preview, and more – Daily News Digest

10 Ways Node.js Development Boosts AI & Real-Time Data (2025-2026 Edition)

This new Coros watch has 3 weeks of battery life and tracks way more – even fly fishing

5 ways automation can speed up your daily workflow – and implementation is easy

This new C-suite role is more important than ever in the AI era – here’s why

iPhone users may finally be able to send encrypted texts to Android friends with iOS 26

Creating Dynamic Real-Time Features with Laravel Broadcasting

Creating Dynamic Real-Time Features with Laravel Broadcasting

Understanding Tailwind CSS Safelist: Keep Your Dynamic Classes Safe!

Sitecore’s Content SDK: Everything You Need to Know

Why GNOME Replaced Eye of GNOME with Loupe as the Default Image Viewer

Why GNOME Replaced Eye of GNOME with Loupe as the Default Image Viewer

Microsoft admits it broke “Reset this PC” in Windows 11 23H2 KB5063875, Windows 10 KB5063709

How to Fix “EA AntiCheat Has Detected an Incompatible Driver” on Windows 11?

CVE-2025-9176 – Neurobin shc OS Command Injection Vulnerability

Investors beware: AI-powered financial scams swamp social media

PyPI Blocks 1,800 Expired-Domain Emails to Prevent Account Takeovers and Supply Chain Attacks

Rilasciato KDE Plasma 6.4: Un’esperienza desktop avanzata, intuitiva e funzionale

CVE-2025-39470 – ThimPress Ivy School PHP Local File Inclusion Vulnerability

CVE-2025-3283 – “Apache Struts Deserialization Remote Code Execution Vulnerability”

CVE-2025-7675 – Autodesk 3DM Out-of-Bounds Write Vulnerability

Amazon Aurora Global Database introduces support for up to 10 secondary Regions

CVE-2023-47294 – NCR Terminal Handler Session Cookie Manipulation Vulnerability

AI updates from the past week: Anthropic launches Claude 4 models, OpenAI adds new tools to Responses API, and more — May 23, 2025

CVE-2025-9169 – SolidInvoice Cross-Site Scripting Vulnerability

CVE-2025-9176 – Neurobin shc OS Command Injection Vulnerability

Related Posts