CVE-2025-14705

Name of the Vulnerable Software and Affected Versions Shiguangwu sgwbox N3 version 2.0.25

Description A flaw exists in the SHARESERVER Feature of the software that allows for remote command injection. The issue stems from the manipulation of the params argument within an unknown function. This manipulation can be initiated remotely, potentially granting an attacker full system control. The exploit has been publicly disclosed, and the vendor was notified but did not respond.

Recommendations Versions prior to 2.0.25 are potentially affected. At the moment, there is no information about a newer version that contains a fix for this vulnerability.