CVE-2025-2725

🗓️ 25 Mar 2025 02:00:09Reported by VulDBType

Critical vulnerability in H3C devices allows remote command injection via HTTP POST Request Handler.

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2025-2725	25 Mar 202502:23	–	circl
CNNVD	H3C多款产品安全漏洞	25 Mar 202500:00	–	cnnvd
Cvelist	CVE-2025-2725 H3C Magic BE18000 HTTP POST Request auth command injection	25 Mar 202502:00	–	cvelist
EUVD	EUVD-2025-8043	3 Oct 202520:07	–	euvd
NVD	CVE-2025-2725	25 Mar 202503:15	–	nvd
Positive Technologies	PT-2025-12688 · H3C · H3C Magic Be18000 +4	24 Mar 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-2725	27 Mar 202503:24	–	redhatcve
Vulnrichment	CVE-2025-2725 H3C Magic BE18000 HTTP POST Request auth command injection	25 Mar 202502:00	–	vulnrichment

[
  {
    "vendor": "H3C",
    "product": "Magic NX15",
    "versions": [
      {
        "version": "V100R014",
        "status": "affected"
      }
    ],
    "modules": [
      "HTTP POST Request Handler"
    ]
  },
  {
    "vendor": "H3C",
    "product": "Magic NX30 Pro",
    "versions": [
      {
        "version": "V100R014",
        "status": "affected"
      }
    ],
    "modules": [
      "HTTP POST Request Handler"
    ]
  },
  {
    "vendor": "H3C",
    "product": "Magic NX400",
    "versions": [
      {
        "version": "V100R014",
        "status": "affected"
      }
    ],
    "modules": [
      "HTTP POST Request Handler"
    ]
  },
  {
    "vendor": "H3C",
    "product": "Magic R3010",
    "versions": [
      {
        "version": "V100R014",
        "status": "affected"
      }
    ],
    "modules": [
      "HTTP POST Request Handler"
    ]
  },
  {
    "vendor": "H3C",
    "product": "Magic BE18000",
    "versions": [
      {
        "version": "V100R014",
        "status": "affected"
      }
    ],
    "modules": [
      "HTTP POST Request Handler"
    ]
  }
]

Source	Link
h3c	www.h3c.com/cn/Service/Document_Software/Software_Download/Consume_product/
vuldb	www.vuldb.com/
zhiliao	www.zhiliao.h3c.com/theme/details/229784
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
github	www.github.com/ZIKH26/CVE-information/blob/master/H3C/Vulnerability%20Information_1.md

15 Apr 2026 00:35Current

8.2High risk

Vulners AI Score8.2

CVSS 27.7

CVSS 3.18

CVSS 48.6

CVSS 38

EPSS0.00816

SSVC