4 matches found
CVE-2025-35009
Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MNNETSP command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command...
CVE-2025-35009
Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MNNETSP command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command...
CVE-2025-35009
Affected products: Microhard BulletLTE-NA2 and IPn4Gii-NA2. Issue: post-authentication command injection in the AT+MNNETSP command leading to privilege escalation. Root cause: CWE-88 (Improper Neutralization of Argument Delimiters in a Command). CVSSv3.1 base score 7.1 (Low/Local access, Low priv...
CVE-2025-35009
creationtimestamp| type| source ---|---|--- 2000-12-31 23:00:00+00:00| seen| http://takeonme.org/cve/ 2025-06-08 18:58:51+00:00| seen| http://takeonme.org/cves/cve-2025-35009/ 2025-06-08 22:04:33+00:00| published-proof-of-concept| Telegram/moKxMeVw6YSpQqBgU1ND2P5BDqpWLscmH9kOqiSF4Xg8 2025-06-08...