CNNVD-202508-1381 Information

CNNVD ID

CNNVD-202508-1381

Related CVE

CVE-2025-50635

• CNNVD Published: 2025-08-13

Description (Chinese)

Netis WF2780是Netis公司的一个网络设备。提供AC路由器以千兆速度提供下一代Wi-Fi。 Netis WF2780 v2.2.35445版本存在安全漏洞，该漏洞源于cgitest.cgi文件中FUN_0048a728函数未正确处理CONTENT_LENGTH变量，可能导致空指针取消引用和拒绝服务攻击。

Description (English)

Netis WF2780 is a network facility for Netis. The provision of AC routers provides the next generation of Wi-Fi at gigavelocity. Netis WF2780 v2.2.35445 contains a security loophole that originates from the incorrect handling of the CONTENT LENGTH variable in FUN 0048a728 in the cgiest.cgi document, which may lead to the cancellation of the reference and denial of service attacks by an empty pointer.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

天旦

Published

2025-08-13

Last Modified

2026-02-24

References

https://github.com/Chinesexilinyu/Netis-WF2780-cgitest.cgi-Vulnerability/tree/main/1 https://access.redhat.com/security/cve/cve-2025-50635