CNNVD-202511-2013 Information

CNNVD ID

CNNVD-202511-2013

Related CVE

CVE-2025-63258

• CNNVD Published: 2025-11-18

Description (Chinese)

H3C ERG3 Series是中国新华三（H3C）公司的一系列企业级路由器。 H3C ERG3 Series存在安全漏洞，该漏洞源于sessionid参数存在命令注入，可能导致远程代码执行。

Description (English)

H3C ERG3 Series is a series of business routers for Xinhua III (H3C) in China. H3C ERG3 Series has a security loophole, which stems from the existence of command injections of ssessionid parameters, which may lead to remote code execution.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

新华三

Published

2025-11-18

Last Modified

2026-02-24

References

https://zhiliao.h3c.com/Theme/details/232571 http://er3200g3x.com http://h3c.com https://access.redhat.com/security/cve/cve-2025-63258

Patch

https://www.h3c.com/cn/