CVE-2025-5146

Name of the Vulnerable Software and Affected Versions Netcore NBR1005GPEV2 versions up to 20250508 Netcore B6V2 versions up to 20250508 Netcore COVER5 versions up to 20250508 Netcore NAP830 versions up to 20250508 Netcore NAP930 versions up to 20250508 Netcore NBR100V2 versions up to 20250508 Netcore NBR200V2 versions up to 20250508

Description A critical vulnerability has been found in the HTTP Header Handler component of the affected Netcore devices. The issue affects the passwd set function of the /usr/bin/routerd file, where manipulation of the pwd argument leads to command injection. This can be initiated remotely. The exploit has been disclosed publicly.

Recommendations For all affected versions up to 20250508, consider disabling the passwd set function of the /usr/bin/routerd file to prevent command injection until a patch is available. Restrict access to the HTTP Header Handler component to minimize the risk of exploitation. Avoid using the pwd argument in the affected HTTP Header Handler until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.