CVE-2025-2919

High CVSS: 7.0

A vulnerability was found in Netis WF-2404 1.1.124EN. It has been declared as critical. This vulnerability affects unknown code of the component UART. The manipulation leads to hardware allows activation of test or debug logic at runtime. It is possible to launch the attack on the physical device. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Vendor

Netis-systems

Product

Netis Wf-2404 Firmware

CWE

CWE-489

Yayın Tarihi

2025-03-28 18:15:17

Güncelleme

2025-04-17 14:06:09

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-489 Netis Wf-2404 Firmware HIGH Netis-systems 2025

Referanslar

https://scoozi.substack.com/p/hacking-a-netis-wf-2404-router-with https://vuldb.com/?ctiid.301894 https://vuldb.com/?id.301894 https://vuldb.com/?submit.521036 https://scoozi.substack.com/p/hacking-a-netis-wf-2404-router-with

Benzer Kayıtlar

High

CVE-2025-50615

A buffer overflow vulnerability has been discovered in Netis WF2880 v2.1.40207 in the FUN_00470c50 function of the cgite…

High

CVE-2025-50616

A buffer overflow vulnerability has been discovered in Netis WF2880 v2.1.40207 in the FUN_0046f984 function of the cgite…

High

CVE-2025-50617

A buffer overflow vulnerability has been discovered in Netis WF2880 v2.1.40207 in the FUN_0046ed68 function of the cgite…

High

CVE-2025-50614

A buffer overflow vulnerability has been discovered in the Netis WF2880 v2.1.40207 in the FUN_0047151c function of the c…

High

CVE-2025-50612

A buffer overflow vulnerability has been discovered in the Netis WF2880 v2.1.40207 in the FUN_004743f8 function of the c…

High

CVE-2025-50613

A buffer overflow vulnerability has been discovered in Netis WF2880 v2.1.40207 in the FUN_00475e1c function of the cgite…