CNNVD-202512-3455 Information

CNNVD ID

CNNVD-202512-3455

Related CVE

CVE-2025-65010

• CNNVD Published: 2025-12-18

Description (Chinese)

WODESYS WD-R608U是中国欣阳（WODESYS）公司的一款无线路由器。 WODESYS WD-R608U存在访问控制错误漏洞，该漏洞源于初始配置wizard.cgi端点访问控制不当，可能导致恶意攻击者未经授权更改管理员面板密码。

Description (English)

WODESYS WD-R608U is a wireless router of the Chinese company WODESYS. WODESYS WD-R608U has access control bugs, which stem from inadequate access controls at the initial configuration wizard.cgi endpoint, which may lead to unauthorized changes in the administrator’s password by malicious assailants.

Hazard Level

High

Vulnerability Type

访问控制错误

Affected Vendor

欣阳

Published

2025-12-18

Last Modified

2026-02-24

References

http://www.wodesys.com/eproductms52.html https://cert.pl/posts/2025/12/CVE-2025-65007 https://github.com/wcyb/security_research