PT-2025-52250 · Wodesys · Wdr122B V2.0+2
Wojciech Cybowski
·
Published
2025-12-18
·
Updated
2025-12-18
·
CVE-2025-65011
CVSS v4.0
7.1
High
| Vector | AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X |
Name of the Vulnerable Software and Affected Versions
WODESYS WD-R608U router versions prior to WDR28081123OV1.01
WODESYS WDR122B V2.0 (affected versions not specified)
WODESYS WDR28 (affected versions not specified)
Description
An unauthorized user can view configuration files by directly referencing the resource. The vendor was notified of this issue but did not provide details about vulnerable versions. Only version WDR28081123OV1.01 was confirmed as vulnerable, and other versions may also be affected.
Recommendations
Update to version WDR28081123OV1.01 or later.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Wd-R608U Router
Wdr122B V2.0
Wdr28