CVE-2025-65009 in WD-R608Uinfo

Zusammenfassung

von MITRE • 18.12.2025

In WODESYS WD-R608U router (also known as WDR122B V2.0 and WDR28) admin password is stored in configuration file as plaintext and can be obtained by unauthorized user by direct references to the resource in question.

The vendor was notified early about this vulnerability, but didn't respond with the details of vulnerability or vulnerable version range. Only version WDR28081123OV1.01 was tested and confirmed as vulnerable, other versions were not tested and might also be vulnerable.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

CERT-PL

Reservieren

13.11.2025

Veröffentlichung

18.12.2025

Moderieren

akzeptiert

Eintrag

VDB-337398

CPE

bereit

CWE

CWE-256 (bestätigt)

CVSS

4.3 (VulDB)

EPSS

0.00022

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-65009
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-65009
CVE Details	https://www.cvedetails.com/cve/CVE-2025-65009/

◂ Zurück Übersicht Weiter ▸

Might our Artificial Intelligence support you?

Check our Alexa App!