CNNVD-202508-3201 Information

CNNVD ID

CNNVD-202508-3201

Related CVE

CVE-2025-50428

• CNNVD Published: 2025-08-27

Description (Chinese)

raspap-webgui是RaspAP开源的一个无线路由器设置软件。 raspap-webgui 3.3.2及之前版本存在安全漏洞，该漏洞源于hostapd.php脚本未清理interface参数，可能导致命令注入攻击。

Description (English)

Raspap-webgui is a no-wire router setup software for RaspaP open source. There is a security loophole in Raspap-webgui 3.3.2 and earlier versions, which stems from the fact that the hostapd.php script did not clear the interface parameters, which could lead to an order of injection into the attack.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

RaspAP

Published

2025-08-27

Last Modified

2026-02-24

References

https://github.com/RaspAP/raspap-webgui/pull/1833 https://blog.smarttecs.com/posts/2025-004-cve-2025-50428/ https://nvd.nist.gov/vuln/detail/CVE-2025-50428

Patch

https://github.com/RaspAP/raspap-webgui/releases