CNNVD-202512-641 Information

CNNVD ID

CNNVD-202512-641

Related CVE

CVE-2025-14105

• CNNVD Published: 2025-12-05

Description (Chinese)

TOZED ZLT M30S和TOZED ZLT M30S PRO都是中国通则康威（TOZED）公司的一款移动WiFi路由器。 TOZED ZLT M30S和TOZED ZLT M30S PRO 1.47版本和3.09.06版本存在安全漏洞，该漏洞源于对文件/reqproc/proc_post中参数goformId的错误操作，可能导致拒绝服务攻击。

Description (English)

TOZED ZLT M30S and TOZED ZLT M30S PRO are both mobile WiFi routers of China’s general rule, ToZED. There is a security loophole between TOZED ZLT M30S and TOZED ZLT M30S PRO 1.47 and 3.09.06, which stems from the erroneous operation of the GoformId parameter in the document/reqproc/proc post, which could lead to a denial of service attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

通则康威

Published

2025-12-05

Last Modified

2026-02-24

References

https://vuldb.com/?ctiid.334487 https://youtu.be/RNgsrnPPxgQ https://vuldb.com/?id.334487 https://vuldb.com/?submit.696740 https://access.redhat.com/security/cve/cve-2025-14105