Skip to main content

Tiandy Easy7 Management Platform CVE-2026-7698

| EUVDEUVD-2026-26836 MEDIUM
OS Command Injection (CWE-78)
2026-05-03 VulDB
5.5
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
5.5 MEDIUM
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
X

Lifecycle Timeline

7
Analysis Generated
May 03, 2026 - 14:30 vuln.today
Severity Changed
May 03, 2026 - 14:22 NVD
HIGH MEDIUM
CVSS changed
May 03, 2026 - 14:22 NVD
7.3 (HIGH) 5.5 (MEDIUM)
PoC Detected
May 03, 2026 - 14:16 vuln.today
Public exploit code
EUVD ID Assigned
May 03, 2026 - 14:00 euvd
EUVD-2026-26836
Analysis Generated
May 03, 2026 - 14:00 vuln.today
CVE Published
May 03, 2026 - 13:30 nvd
MEDIUM 5.5

DescriptionCVE.org

A vulnerability was identified in Tiandy Easy7 Integrated Management Platform 7.17.0. Affected by this vulnerability is an unknown functionality of the file /Easy7/rest/systemInfo/updateDbBackupInfo. Such manipulation of the argument week leads to os command injection. The attack can be executed remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.

AnalysisAI

OS command injection in Tiandy Easy7 Integrated Management Platform 7.17.0 allows remote unauthenticated attackers to execute arbitrary system commands via the 'week' parameter in the /Easy7/rest/systemInfo/updateDbBackupInfo endpoint. The vulnerability has publicly available exploit code and is being actively tracked; the vendor has not responded to disclosure attempts.

Technical ContextAI

The vulnerability exists in the database backup functionality of Easy7's REST API. The /Easy7/rest/systemInfo/updateDbBackupInfo endpoint fails to properly sanitize user-supplied input in the 'week' parameter before passing it to OS command execution functions. This is a classic OS command injection flaw (CWE-78) where attacker-controlled data flows directly into system command execution without input validation or parameterization. The affected product is Tiandy's integrated management platform, a centralized management system for networked surveillance and security devices, which typically runs on Linux servers and accepts remote REST API calls.

RemediationAI

Upgrade Tiandy Easy7 to a patched version released after the vulnerability disclosure if available from Tiandy; no specific patch version is publicly confirmed at this time. Given vendor non-responsiveness, the following compensating controls are recommended: restrict network access to the /Easy7/rest/systemInfo/updateDbBackupInfo endpoint using firewall rules or WAF rules to only trusted administrative IP addresses; disable the updateDbBackupInfo functionality if not required for operations; implement input validation and filtering on the 'week' parameter to reject values containing shell metacharacters (|, &, ;, $, `, etc.); monitor access logs for suspicious requests to this endpoint and alert on failed or unusual backup operations; run the Easy7 service under a non-privileged OS user account with minimal required permissions to limit command execution impact.

Share

CVE-2026-7698 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy