CVE-2025-64126

An OS command injection vulnerability exists due to improper input 
validation. The application accepts a parameter directly from user input
 without verifying it is a valid IP address or filtering potentially 
malicious characters. This could allow an unauthenticated attacker to 
inject arbitrary commands.