CVE-2025-30030

Summary

CVE-2025-30030: A critical SQL injection vulnerability has been discovered in TeleControl Server Basic (versions below V3.1.2.2). This issue can be exploited through the 'ImportDatabase' method, allowing an authenticated attacker to bypass authorization controls and gain unauthorized access to the application's database. The attacker can read sensitive data, write malicious code, and execute it with "NT AUTHORITY\\NetworkService" permissions. The vulnerability can be exploited remotely if an attacker can connect to the affected system on port 8000. (ZDI-CAN-25924) In simpler terms: CVE-2025-30030: A serious SQL injection bug exists in TeleControl Server Basic (versions prior to V3.1.2.2). Attackers can take advantage of this flaw by manipulating the 'ImportDatabase' function, bypassing authorization checks, reading/writing sensitive data, and executing code as "NT AUTHORITY\\NetworkService". Exploitation requires connection to the vulnerable system on port 8000. (ZDI-CAN-25924)

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.