PT-2025-25260 · Pioneers · Dmh-Wt7600Nex+1
Dmitry Janushkevich
+1
·
Published
2025-06-11
·
Updated
2025-06-25
·
CVE-2025-5832
CVSS v3.1
6.8
Medium
| Vector | AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions:
Pioneer DMH-WT7600NEX (affected versions not specified)
Description:
This issue allows physically present attackers to execute arbitrary code on affected installations of Pioneer DMH-WT7600NEX devices. The flaw exists within the software update verification process due to insufficient validation of data in the software update. An attacker can leverage this to execute code in the context of the device. Authentication is not required to exploit this issue.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Insufficient Verification of Data Authenticity
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Dmh-Wt7600Nex
Dmh-Wt7600Nex Firmware