CVE-2025-41427

Name of the Vulnerable Software and Affected Versions: WRC-X3000GS, WRC-X3000GSA, and WRC-X3000GSN (affected versions not specified)

Description: The issue is related to an improper neutralization of special elements used in an OS command, also known as 'OS Command Injection'. This occurs in the Connection Diagnostics page. A remote authenticated attacker can send a specially crafted request to execute an arbitrary OS command.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.