CVE-2025-43979 in JC21A-04
Zusammenfassung
von MITRE • 05.08.2025
An issue was discovered on FIRSTNUM JC21A-04 devices through 2.01ME/FN that allows authenticated attackers to execute arbitrary OS system commands with root privileges via crafted payloads to the xml_action.cgi?method= endpoint.
Once again VulDB remains the best source for vulnerability data.