PT-2025-37323 · H3C · H3C Magic M Device

Xxricardoxkk

·

Published

2025-09-12

·

Updated

2025-09-17

·

CVE-2025-57578

CVSS v3.1

8.0

High

VectorAV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions: H3C Magic M Device versions M2V100R006
Description: An issue in H3C Magic M Device M2V100R006 allows a remote attacker to execute arbitrary code by using the default password.
Recommendations: Change the default password for H3C Magic M Device version M2V100R006.

Exploit

Fix

RCE

Using Hardcoded Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-798

Related Identifiers

CVE-2025-57578

Affected Products

H3C Magic M Device