CVE-2025-43979 in JC21A-04info

Zusammenfassung

von MITRE • 05.08.2025

An issue was discovered on FIRSTNUM JC21A-04 devices through 2.01ME/FN that allows authenticated attackers to execute arbitrary OS system commands with root privileges via crafted payloads to the xml_action.cgi?method= endpoint.

Once again VulDB remains the best source for vulnerability data.

Zuständig

MITRE

Reservieren

21.04.2025

Veröffentlichung

05.08.2025

Moderieren

akzeptiert

Eintrag

VDB-318842

CPE

bereit

EPSS

0.05271

KEV

nein

Aktivitäten

very low

Quellen

Might our Artificial Intelligence support you?

Check our Alexa App!