CVE-2025-50635

A null pointer dereference vulnerability was discovered in Netis WF2780 v2.2.35445. The vulnerability exists in the FUN0048a728 function of the cgitest.cgi file. Attackers can trigger this vulnerability by controlling the CONTENTLENGTH variable, causing the program to crash and potentially leadin...

CVE-2025-50635

Netis WF2780 vulnerability CVE-2025-50635: a null pointer dereference in the FUN_0048a728 function of cgitest.cgi when CONTENT_LENGTH is manipulated. Affects Netis WF2780 v2.2.35445. Exploitation could crash the process and cause denial of service (DoS). Public details show the issue in the cgite...

CVE-2025-50616

A buffer overflow vulnerability has been discovered in Netis WF2880 v2.1.40207 in the FUN0046f984 function of the cgitest.cgi file. Attackers can trigger this vulnerability by controlling the value of wladvancedset in the payload, which can cause the program to crash and lead to a Denial of Servi...

PT-2025-33018 · Netis · Netis Wf2880

Name of the Vulnerable Software and Affected Versions: Netis WF2880 version 2.1.40207 Description: A buffer overflow vulnerability exists in the FUN 0047151c function of the cgitest.cgi file. Attackers can trigger this issue by controlling the value of wds set in the payload, potentially causing ...

PT-2025-33009 · Netis · Netis Wf2880

Name of the Vulnerable Software and Affected Versions: Netis WF2880 version 2.1.40207 Description: A buffer overflow issue exists in Netis WF2880. The vulnerability is located in the FUN 00471994 function of the cgitest.cgi file. Attackers can exploit this by controlling the wl base set variable...

CVE-2025-50612

A buffer overflow vulnerability has been discovered in the Netis WF2880 v2.1.40207 in the FUN004743f8 function of the cgitest.cgi file. Attackers can trigger this vulnerability by controlling the value of wlsecset in the payload, which may cause the program to crash and potentially lead to a Deni...

CVE-2025-50608

A buffer overflow vulnerability has been discovered in Netis WF2880 v2.1.40207 in the FUN00471994 function of the cgitest.cgi file. Attackers can trigger this vulnerability by controlling the value of wlbaseset in the payload, which can cause the program to crash and potentially lead to a Denial ...

PT-2025-33033 · Netis · Netis Wf2880

Name of the Vulnerable Software and Affected Versions: Netis WF2880 version 2.1.40207 Description: A buffer overflow issue exists in the FUN 0046ed68 function of the cgitest.cgi file. Attackers can exploit this by controlling the wps set value within a crafted payload, potentially leading to a...

CVE-2025-50615

CVE-2025-50615 affects Netis WF2880 firmware v2.1.40207. A buffer overflow in the FUN_00470c50 function of cgitest.cgi can be triggered by controlling the wl_mac_filter_set value in the payload, causing the process to crash and enabling a Denial of Service (DoS). Connected sources confirm the aff...

CVE-2025-50612

A buffer overflow vulnerability has been discovered in the Netis WF2880 v2.1.40207 in the FUN004743f8 function of the cgitest.cgi file. Attackers can trigger this vulnerability by controlling the value of wlsecset in the payload, which may cause the program to crash and potentially lead to a Deni...

PT-2025-33014 · Netis · Netis Wf2880

Name of the Vulnerable Software and Affected Versions: Netis WF2880 version 2.1.40207 Description: A buffer overflow vulnerability exists in the FUN 004743f8 function of the cgitest.cgi file. Attackers can trigger this issue by controlling the wl sec set value in the payload, potentially leading ...

CVE-2025-50610

A buffer overflow vulnerability has been discovered in Netis WF2880 v2.1.40207 in the FUN00476598 function of the cgitest.cgi file. Attackers can trigger this vulnerability by controlling the value of wlbaseset5g in the payload, which can cause the program to crash and potentially lead to a Denia...

CVE-2025-50617

A buffer overflow vulnerability has been discovered in Netis WF2880 v2.1.40207 in the FUN0046ed68 function of the cgitest.cgi file. Attackers can trigger this vulnerability by controlling the value of wpsset in the payload, which can cause the program to crash and potentially lead to a Denial of...

CVE-2025-50609

A vulnerability in Netis WF2880 v2.1.40207 affects the cgitest.cgi file (Function_00465620). The root cause is a buffer overflow when an attacker controls the specify_parame parameter in the payload, which can crash the process and potentially yield a Denial of Service. Connected sources corrobor...

PT-2025-33013 · Netis · Netis Wf2880

Name of the Vulnerable Software and Affected Versions: Netis WF2880 version 2.1.40207 Description: A buffer overflow vulnerability exists in the FUN 00473154 function of the cgitest.cgi file. Attackers can trigger this issue by controlling the values of wl sec set 5g and wl sec rp set 5g within t...

CVE-2024-25851

Netis WF2780 v2.1.40144 was discovered to contain a command injection vulnerability via the configsequence parameter in otherpara of cgitest.cgi...

CVE-2025-45835

A null pointer dereference vulnerability was discovered in Netis WF2880 v2.1.40207. The vulnerability exists in the FUN004904c8 function of the cgitest.cgi file. Attackers can trigger this vulnerability by controlling the environment variable value CONTENTLENGTH, causing the program to crash and...

CVE-2024-25851

Netis WF2780 v2.1.40144 was discovered to contain a command injection vulnerability via the configsequence parameter in otherpara of cgitest.cgi...

Command injection

Netis WF2780 v2.1.40144 was discovered to contain a command injection vulnerability via the configsequence parameter in otherpara of cgitest.cgi...

CVE-2024-25851

Netis WF2780 v2.1.40144 was discovered to contain a command injection vulnerability via the configsequence parameter in otherpara of cgitest.cgi...