CVE-2025-50610

A buffer overflow vulnerability has been discovered in Netis WF2880 v2.1.40207 in the FUN00476598 function of the cgitest.cgi file. Attackers can trigger this vulnerability by controlling the value of wlbaseset5g in the payload, which can cause the program to crash and potentially lead to a Denia...

CVE-2025-50612

A buffer overflow vulnerability has been discovered in the Netis WF2880 v2.1.40207 in the FUN004743f8 function of the cgitest.cgi file. Attackers can trigger this vulnerability by controlling the value of wlsecset in the payload, which may cause the program to crash and potentially lead to a Deni...

PT-2025-33032 · Netis · Netis Wf2880

Name of the Vulnerable Software and Affected Versions: Netis WF2880 version 2.1.40207 Description: A buffer overflow issue exists in the FUN 0046f984 function of the cgitest.cgi file. Attackers can exploit this by controlling the wl advanced set value within the payload, potentially causing a...

Netis WF2780 安全漏洞

Netis WF2780 is a networking device from Netis Inc. Provides AC routers to deliver next-generation Wi-Fi at gigabit speeds. A security vulnerability exists in the Netis WF2780 version v2.2.35445, which stems from the FUN0048a728 function in the cgitest.cgi file not handling the CONTENTLENGTH...

CVE-2025-50635

A null pointer dereference vulnerability was discovered in Netis WF2780 v2.2.35445. The vulnerability exists in the FUN0048a728 function of the cgitest.cgi file. Attackers can trigger this vulnerability by controlling the CONTENTLENGTH variable, causing the program to crash and potentially leadin...

CVE-2025-50616

A buffer overflow vulnerability has been discovered in Netis WF2880 v2.1.40207 in the FUN0046f984 function of the cgitest.cgi file. Attackers can trigger this vulnerability by controlling the value of wladvancedset in the payload, which can cause the program to crash and lead to a Denial of Servi...

CVE-2025-50635

Netis WF2780 vulnerability CVE-2025-50635: a null pointer dereference in the FUN_0048a728 function of cgitest.cgi when CONTENT_LENGTH is manipulated. Affects Netis WF2780 v2.2.35445. Exploitation could crash the process and cause denial of service (DoS). Public details show the issue in the cgite...

CVE-2025-50612

A buffer overflow vulnerability has been discovered in the Netis WF2880 v2.1.40207 in the FUN004743f8 function of the cgitest.cgi file. Attackers can trigger this vulnerability by controlling the value of wlsecset in the payload, which may cause the program to crash and potentially lead to a Deni...

CVE-2025-50635

A null pointer dereference vulnerability was discovered in Netis WF2780 v2.2.35445. The vulnerability exists in the FUN0048a728 function of the cgitest.cgi file. Attackers can trigger this vulnerability by controlling the CONTENTLENGTH variable, causing the program to crash and potentially leadin...

CVE-2025-50616

A buffer overflow vulnerability has been discovered in Netis WF2880 v2.1.40207 in the FUN0046f984 function of the cgitest.cgi file. Attackers can trigger this vulnerability by controlling the value of wladvancedset in the payload, which can cause the program to crash and lead to a Denial of Servi...

CVE-2025-50617

A buffer overflow vulnerability has been discovered in Netis WF2880 v2.1.40207 in the FUN0046ed68 function of the cgitest.cgi file. Attackers can trigger this vulnerability by controlling the value of wpsset in the payload, which can cause the program to crash and potentially lead to a Denial of...

PT-2025-33031 · Netis · Netis Wf2880

Name of the Vulnerable Software and Affected Versions: Netis WF2880 version 2.1.40207 Description: A buffer overflow issue exists in the FUN 00470c50 function of the cgitest.cgi file. An attacker can trigger this issue by controlling the wl mac filter set value within the payload, potentially...

CVE-2025-50608

A buffer overflow vulnerability has been discovered in Netis WF2880 v2.1.40207 in the FUN00471994 function of the cgitest.cgi file. Attackers can trigger this vulnerability by controlling the value of wlbaseset in the payload, which can cause the program to crash and potentially lead to a Denial ...

CVE-2025-50615

CVE-2025-50615 affects Netis WF2880 firmware v2.1.40207. A buffer overflow in the FUN_00470c50 function of cgitest.cgi can be triggered by controlling the wl_mac_filter_set value in the payload, causing the process to crash and enabling a Denial of Service (DoS). Connected sources confirm the aff...

PT-2025-33010 · Netis · Netis Wf2880

Name of the Vulnerable Software and Affected Versions: Netis WF2880 version 2.1.40207 Description: A buffer overflow vulnerability exists in the Function 00465620 function of the cgitest.cgi file. Attackers can trigger this issue by controlling the specify parame variable within the payload,...

CVE-2024-25851

Netis WF2780 v2.1.40144 was discovered to contain a command injection vulnerability via the configsequence parameter in otherpara of cgitest.cgi...

CVE-2025-45835

A null pointer dereference vulnerability was discovered in Netis WF2880 v2.1.40207. The vulnerability exists in the FUN004904c8 function of the cgitest.cgi file. Attackers can trigger this vulnerability by controlling the environment variable value CONTENTLENGTH, causing the program to crash and...

CVE-2024-25851

Netis WF2780 v2.1.40144 was discovered to contain a command injection vulnerability via the configsequence parameter in otherpara of cgitest.cgi...

Command injection

Netis WF2780 v2.1.40144 was discovered to contain a command injection vulnerability via the configsequence parameter in otherpara of cgitest.cgi...

CVE-2024-25851

Netis WF2780 v2.1.40144 was discovered to contain a command injection vulnerability via the configsequence parameter in otherpara of cgitest.cgi...