CNNVD-202509-1872 Information

CNNVD ID

CNNVD-202509-1872

Related CVE

CVE-2025-10385

• CNNVD Published: 2025-09-14

Description (Chinese)

Mercury KM08-708H GiGA WiFi Wave2是中国水星（Mercury）公司的一款无线路由器。 Mercury KM08-708H GiGA WiFi Wave2 1.1版本存在安全漏洞，该漏洞源于文件/goform/mcr_setSysAdm中函数sub_450B2C对参数ChgUserId的错误操作，可能导致缓冲区溢出。

Description (English)

Mercury KM08-708H GiGA WiFi Wave2 is a wireless router of Mercury. The Mercury KM08-708H GiGA WiFi Wave2 1.1 version has a security loophole that stems from the error of the function sub 450B2C against parameter ChguserId in file/goform/mcr setSysAdm, which may result in a spilling of the buffer zone.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

水星

Published

2025-09-14

Last Modified

2026-02-24

References

https://github.com/Jjx-wy/kt/blob/main/KT%20KM08-708H.md https://vuldb.com/?id.323820 https://vuldb.com/?submit.643902 https://vuldb.com/?ctiid.323820 https://access.redhat.com/security/cve/cve-2025-10385