CNNVD-202512-3457 Information

CNNVD ID

CNNVD-202512-3457

Related CVE

CVE-2025-65007

• CNNVD Published: 2025-12-18

Description (Chinese)

WODESYS WD-R608U是中国欣阳（WODESYS）公司的一款无线路由器。 WODESYS WD-R608U存在访问控制错误漏洞，该漏洞源于adm.cgi端点配置更改模块缺乏身份验证，可能导致未经验证的攻击者执行命令。

Description (English)

WODESYS WD-R608U is a wireless router of the Chinese company WODESYS. WODESYS WD-R608U has an access control error that stems from the lack of identification of the endpoint configuration change module at adm.cgi, which may lead to the execution of the command by the uncertified assailant.

Hazard Level

High

Vulnerability Type

访问控制错误

Affected Vendor

欣阳

Published

2025-12-18

Last Modified

2026-02-24

References

http://www.wodesys.com/eproductms52.html https://cert.pl/en/posts/2025/12/CVE-2025-65007 https://github.com/wcyb/security_research