CVE-2025-29652 in M7000info

Summary

by MITRE • 04/16/2025

SQL Injection vulnerability exists in the TP-Link M7000 4G LTE Mobile Wi-Fi Router Firmware Version: 1.0.7 Build 180127 Rel.55998n, allowing an unauthenticated attacker to inject malicious SQL statements via the username and password fields

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsible

MITRE

Reservation

03/11/2025

Disclosure

04/16/2025

Moderation

revoked

Entry

VDB-305319

CPE

ready

CWE

CWE-89 (confirmed)

CVSS

7.3 (VulDB)

EPSS

0.00000

KEV

Activities

very low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-29652
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-29652
CVE Details	https://www.cvedetails.com/cve/CVE-2025-29652/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!