CNNVD-202508-451 Information

CNNVD ID

CNNVD-202508-451

Related CVE

CVE-2025-8636

• CNNVD Published: 2025-08-06

Description (Chinese)

Kenwood DMX958XR是Kenwood公司的一款车载信息娱乐系统。 Kenwood DMX958XR存在操作系统命令注入漏洞，该漏洞源于固件更新过程中未正确验证用户输入，可能导致执行任意代码。

Description (English)

Kenwood DMX958XR is a vehicle-borne information entertainment system for Kenwood. Kenwood DMX958XR has an operating system command to inject a loophole, which arises from the incorrect validation of user input during the solidware update process, which may result in the execution of any code.

Hazard Level

High

Vulnerability Type

操作系统命令注入

Affected Vendor

Kenwood

Published

2025-08-06

Last Modified

2026-02-24

References

https://www.zerodayinitiative.com/advisories/ZDI-25-784/