CVE-2025-67448 in NW-431Finfo

Zusammenfassung

von MITRE • 04.06.2026

The SMS module in Neterbit NW-431F Router 20241014-IR03 and before is vulnerable to stored XSS. The application does not properly sanitize user input in SMS messages before storing and displaying them. An attacker can send an SMS containing a malicious XSS payload, which will be executed in the context of the victim's browser when the message is viewed.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

MITRE

Reservieren

08.12.2025

Veröffentlichung

04.06.2026

Moderieren

akzeptiert

Eintrag

VDB-368394

CPE

bereit

CWE

CWE-79 (bestätigt)

CVSS

5.7 (VulDB)

EPSS

0.00000

KEV

nein

Aktivitäten

low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-67448
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-67448
CVE Details	https://www.cvedetails.com/cve/CVE-2025-67448/

◂ Zurück Übersicht Weiter ▸

Interested in the pricing of exploits?

See the underground prices here!