CVE-2025-43988 Information

Aug 14, 2025 cve

Description

KuWFi 5G01-X55 FL2020_V0.0.12 devices expose an unauthenticated API endpoint (ajax_get.cgi) allowing remote attackers to retrieve sensitive configuration data including admin credentials.

Reference

https://drive.proton.me/urls/9EB08033PW#2b7dTc2x705W https://drive.proton.me/urls/9EB08033PW#2b7dTc2x705W https://github.com/actuator/cve/blob/main/Kuwfi/CVE-2025-43988.txt https://github.com/actuator/cve/tree/main/Kuwfi https://kuwfi.com/products/nsa-sa-25gbps-kuwfi-6000mah-wifi-router-5g-dual-band-128users-portable-5g-wifi-router-with-sim-card-slot

CNNVD-202508-1447 (Published: 2025-08-13)

Share on:

CVE-2025-43988 Information

Description

Reference

Related CNNVD