CNNVD-202508-464 Information

CNNVD ID

CNNVD-202508-464

Related CVE

CVE-2025-8649

• CNNVD Published: 2025-08-06

Description (Chinese)

Kenwood DMX958XR是Kenwood公司的一款车载信息娱乐系统。 Kenwood DMX958XR存在操作系统命令注入漏洞，该漏洞源于JKWifiService未正确验证用户输入，可能导致执行任意代码。

Description (English)

Kenwood DMX958XR is a vehicle-borne information entertainment system for Kenwood. Kenwood DMX958XR had an operational system command leak that originated from JKWifiService ’ s incorrect validation of user input, which could lead to the execution of any code.

Hazard Level

High

Vulnerability Type

操作系统命令注入

Affected Vendor

Kenwood

Published

2025-08-06

Last Modified

2026-02-24

References

https://www.zerodayinitiative.com/advisories/ZDI-25-797/