27 matches found
CVE-2025-14709
A security vulnerability has been detected in Shiguangwu sgwbox N3 2.0.25. Affected by this issue is some unknown functionality of the file /usr/sbin/httpeshellserver of the component WIRELESSCFGGET Interface. The manipulation of the argument params leads to buffer overflow. Remote exploitation o...
CVE-2025-14704
A vulnerability was found in Shiguangwu sgwbox N3 2.0.25. The impacted element is an unknown function of the file /eshell of the component API. The manipulation results in path traversal. It is possible to launch the attack remotely. The exploit has been made public and could be used. The vendor...
CVE-2025-14703
A vulnerability has been found in Shiguangwu sgwbox N3 2.0.25. The affected element is an unknown function of the file /fsnotify of the component POST Message Handler. The manipulation of the argument token leads to improper authentication. It is possible to initiate the attack remotely. The...
CVE-2025-14708
A weakness has been identified in Shiguangwu sgwbox N3 2.0.25. Affected by this vulnerability is an unknown functionality of the file /usr/sbin/httpeshellserver of the component WIREDCFGGET Interface. Executing manipulation of the argument params can lead to buffer overflow. The attack may be...
CVE-2025-14709 Shiguangwu sgwbox N3 WIRELESSCFGGET http_eshell_server buffer overflow
A security vulnerability has been detected in Shiguangwu sgwbox N3 2.0.25. Affected by this issue is some unknown functionality of the file /usr/sbin/httpeshellserver of the component WIRELESSCFGGET Interface. The manipulation of the argument params leads to buffer overflow. Remote exploitation o...
CVE-2025-14709
CVE-2025-14709 affects Shiguangwu sgwbox N3 (v2.0.25). The vulnerability is in the WIRELESSCFGGET Interface’s /usr/sbin/http_eshell_server functionality, where improper handling of the params argument leads to a buffer overflow. Remote exploitation is possible and the exploit has been disclosed p...
CVE-2025-14708 Shiguangwu sgwbox N3 WIREDCFGGET http_eshell_server buffer overflow
A weakness has been identified in Shiguangwu sgwbox N3 2.0.25. Affected by this vulnerability is an unknown functionality of the file /usr/sbin/httpeshellserver of the component WIREDCFGGET Interface. Executing manipulation of the argument params can lead to buffer overflow. The attack may be...
CVE-2025-14708
CVE-2025-14708 affects Shiguangwu sgwbox N3 2.0.25. The vulnerability is a buffer overflow in the WIREDCFGGET Interface, triggered by manipulating the params argument in the file /usr/sbin/http_eshell_server. Exploitation may be remote and a public exploit is available. The vendor was contacted b...
CVE-2025-14707
A security flaw has been discovered in Shiguangwu sgwbox N3 2.0.25. Affected is an unknown function of the file /usr/sbin/httpeshellserver of the component DOCKER Feature. Performing manipulation of the argument params results in command injection. The attack may be initiated remotely. The exploi...
CVE-2025-14707 Shiguangwu sgwbox N3 DOCKER Feature http_eshell_server command injection
A security flaw has been discovered in Shiguangwu sgwbox N3 2.0.25. Affected is an unknown function of the file /usr/sbin/httpeshellserver of the component DOCKER Feature. Performing manipulation of the argument params results in command injection. The attack may be initiated remotely. The exploi...
CVE-2025-14707 Shiguangwu sgwbox N3 DOCKER Feature http_eshell_server command injection
A security flaw has been discovered in Shiguangwu sgwbox N3 2.0.25. Affected is an unknown function of the file /usr/sbin/httpeshellserver of the component DOCKER Feature. Performing manipulation of the argument params results in command injection. The attack may be initiated remotely. The exploi...
CVE-2025-14706 Shiguangwu sgwbox N3 NETREBOOT http_eshell_server command injection
A vulnerability was identified in Shiguangwu sgwbox N3 2.0.25. This impacts an unknown function of the file /usr/sbin/httpeshellserver of the component NETREBOOT Interface. Such manipulation leads to command injection. The attack can be launched remotely. The exploit is publicly available and mig...
CVE-2025-14705
A vulnerability was determined in Shiguangwu sgwbox N3 2.0.25. This affects an unknown function of the component SHARESERVER Feature. This manipulation of the argument params causes command injection. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilize...
CVE-2025-14705 Shiguangwu sgwbox N3 SHARESERVER Feature command injection
A vulnerability was determined in Shiguangwu sgwbox N3 2.0.25. This affects an unknown function of the component SHARESERVER Feature. This manipulation of the argument params causes command injection. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilize...
CVE-2025-14704
The CVE-2025-14704 entry concerns Shiguangwu sgwbox N3 (version 2.0.25). The vulnerability arises from a path traversal in an unknown function within the API component’s /eshell file, enabling remote exploitation. Multiple sources confirm that the exploit is public and that the vendor was contact...
EUVD-2025-203335
A vulnerability was found in Shiguangwu sgwbox N3 2.0.25. The impacted element is an unknown function of the file /eshell of the component API. The manipulation results in path traversal. It is possible to launch the attack remotely. The exploit has been made public and could be used. The vendor...
CVE-2025-14704 Shiguangwu sgwbox N3 API eshell path traversal
A vulnerability was found in Shiguangwu sgwbox N3 2.0.25. The impacted element is an unknown function of the file /eshell of the component API. The manipulation results in path traversal. It is possible to launch the attack remotely. The exploit has been made public and could be used. The vendor...
CVE-2025-14703
A vulnerability has been found in Shiguangwu sgwbox N3 2.0.25. The affected element is an unknown function of the file /fsnotify of the component POST Message Handler. The manipulation of the argument token leads to improper authentication. It is possible to initiate the attack remotely. The...
CVE-2025-14703
CVE-2025-14703 affects Shiguangwu sgwbox N3 (version 2.0.25). The vulnerability is in an unknown function under /fsnotify, in the POST Message Handler, where manipulation of the token argument leads to improper authentication. It can be exploited remotely and the exploit has been publicly disclos...
SGWBox N3 路径遍历漏洞
SGWBox N3 is a network storage device from China's Pickup Dock SGWBox. A path traversal vulnerability exists in SGWBox N3 version 2.0.25, which stems from incorrect manipulation of the file/eshell and could lead to path traversal...