CVE-2025-57577

High CVSS: 8.0

An issue in H3C Device R365V300R004 allows a remote attacker to execute arbitrary code via the default password. NOTE: the Supplier's position is that their "product lines enforce or clearly prompt users to change any initial credentials upon first use. At most, this would be a case of misconfiguration if an administrator deliberately ignored the prompts, which is outside the scope of CVE definitions."

Vendor

Product

CWE

CWE-798

Yayın Tarihi

2025-09-12 16:15:34

Güncelleme

2025-09-15 15:21:42

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-798 HIGH 2025

Referanslar

https://github.com/XXRicardo/iot-cve/blob/main/H3C/R365V300R004.md https://h3c.com https://www.h3c.com/cn/