CVE-2025-67448 in NW-431Fthông tin

Tóm tắt

Bởi MITRE • 04/06/2026

The SMS module in Neterbit NW-431F Router 20241014-IR03 and before is vulnerable to stored XSS. The application does not properly sanitize user input in SMS messages before storing and displaying them. An attacker can send an SMS containing a malicious XSS payload, which will be executed in the context of the victim's browser when the message is viewed.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

chịu trách nhiệm

MITRE

Đặt trước

08/12/2025

Tiết lộ

04/06/2026

Kiểm duyệt

được chấp nhận

mục

VDB-368394

CPE

sẵn sàng

CWE

CWE-79 (Đã xác nhận)

CVSS

5.7 (VulDB)

EPSS

0.00000

KEV

không

Các hoạt động

thấp

Nguồn

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-67448
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-67448
CVE Details	https://www.cvedetails.com/cve/CVE-2025-67448/

◂ Trước Tổng Quan Tiếp theo ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!