CVE-2025-27082

Summary

CVE-2025-27082 is a critical vulnerability affecting both the AOS-10 GW and AOS-8 Controller/Mobility Conductor operating systems. This Arbitrary File Write flaw present in their web-based management interfaces enables authenticated attackers to upload unauthorized files and execute arbitrary commands on the underlying host operating system. The security implications of this vulnerability are severe, potentially allowing unauthorized system modifications, data theft, or even complete system takeover. Organizations using these systems are strongly encouraged to apply the available patches as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.