CVE-2025-50609

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions: Netis WF2880 version 2.1.40207

Description: A buffer overflow vulnerability exists in the Function 00465620 function of the cgitest.cgi file. Attackers can trigger this issue by controlling the specify parame variable within the payload, potentially leading to a Denial of Service (DoS) attack.

Recommendations: Update to a newer version of Netis WF2880 that addresses this vulnerability. As a temporary workaround, restrict access to the cgitest.cgi file. Avoid providing untrusted input to the specify parame variable.

Exploit

Fix

DoS

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-120

Related Identifiers

CVE-2025-50609

Affected Products

Netis Wf2880

CVE-2025-50609

Weakness Enumeration

Related Identifiers

Affected Products

References · 7