CVE-2025-8651

Name of the Vulnerable Software and Affected Versions Kenwood DMX958XR (affected versions not specified)

Description A flaw exists within the JKWifiService of the Kenwood DMX958XR, allowing physically present attackers to execute arbitrary code on affected devices. Authentication is not required for exploitation. The issue stems from insufficient validation of user-supplied input before it is used in a system call, potentially allowing an attacker to execute code with root privileges.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.