CVE-2025-35007 in IPn4Giiinfo

Summary

by MITRE • 06/09/2025

Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MFRULE command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')," and is estimated as a CVSS 7.1 (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N). This issue has not been generally fixed at the time of this CVE record's first publishing.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Analysis

by VulDB Data Team • 01/12/2026

The vulnerability identified as CVE-2025-35007 affects specialized telecommunications hardware products including the Microhard BulletLTE-NA2 and IPn4Gii-NA2 devices. These industrial-grade communication modules are designed for remote network connectivity and typically operate in critical infrastructure environments where secure command execution is paramount. The affected devices are commonly deployed in scenarios requiring robust cellular connectivity for industrial automation, remote monitoring, and critical communications systems where unauthorized access could have severe operational consequences.

The technical flaw manifests within the AT+MFRULE command implementation, which represents a post-authentication command injection vulnerability classified under CWE-88. This particular weakness occurs when the system fails to properly sanitize user-supplied input parameters before incorporating them into system commands. The vulnerability allows an authenticated attacker to inject malicious command arguments that bypass normal input validation mechanisms, leading to arbitrary command execution within the device's operational environment. The command injection occurs specifically in the context of modem rule configuration where the system processes user-provided parameters without adequate neutralization of argument delimiters that could be exploited to manipulate command structure.

The operational impact of this vulnerability extends beyond simple unauthorized command execution to encompass potential privilege escalation capabilities. While the initial exploitation requires authentication credentials, the post-authentication nature of the flaw means that an attacker who has gained access to legitimate user accounts could leverage this vulnerability to elevate their privileges within the system. This represents a significant concern for industrial control systems where device integrity and operational security are critical, as the compromised device could potentially be used as a foothold for broader network infiltration or to disrupt critical communication services. The CVSS score of 7.1 indicates a high severity vulnerability that requires immediate attention from system administrators and security teams responsible for maintaining these critical infrastructure components.

Security mitigations for this vulnerability should focus on implementing proper input validation and sanitization techniques for all command parameters, particularly those related to modem configuration commands. Organizations should ensure that all user-supplied input undergoes strict validation to prevent delimiter injection attacks, following established security practices such as those outlined in the OWASP Top Ten and NIST guidelines for secure coding. Network segmentation and access control measures should be implemented to limit the potential impact of successful exploitation, while regular security assessments and vulnerability scanning should be conducted to identify similar weaknesses in related systems. The lack of general fixes at the time of CVE publication emphasizes the need for immediate vendor communication and implementation of temporary workarounds or patches to protect deployed systems from potential exploitation.

Responsible

AHA

Reservation

04/15/2025

Disclosure

06/09/2025

Moderation

accepted

CPE

ready

EPSS

0.01012

KEV

no

Activities

very low

Sources

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!