Is Foglight affected by PowerShell Remote Code Execution vulnerability (CVE-2025-54100)? (4381790)

Chat now with support

Return

Feedback Submitted

Did this article solve an issue for you?

Select Rating

Title

Is Foglight affected by PowerShell Remote Code Execution vulnerability (CVE-2025-54100)?
Description
Does Foglight use the PowerShell cmdlet Invoke-WebRequest? Concerns have been expressed about vulnerability CVE-2025-54100.
- PowerShell Remote Code Execution Vulnerability (CVE-2025-54100)
- PowerShell 5.1 Invoke-WebRequest Security Advisory
```
Security Warning: Script Execution Risk Invoke-WebRequest parses the content of the web page. Script code in the web page might be run when the page is parsed.
```
Resolution

Out of the box Foglight does not run the Invoke-WebRequest PowerShell cmdlet. Therefore, this vulnerability does not affect Foglight.

Feedback Submitted

Did this article solve an issue for you?

Select Rating

Title