3 matches found
CVE-2025-3542
A vulnerability, which was classified as critical, was found in H3C Magic NX15, Magic NX400 and Magic R3010 up to V100R014. This affects the function FCGIWizardProtoProcess of the file /api/wizard/getsyncpppoecfg of the component HTTP POST Request Handler. The manipulation leads to command...
CVE-2025-3542
creationtimestamp| type| source ---|---|--- 2025-04-13 23:52:50+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/11570 2025-04-14 02:17:57+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmqioi4o4m2b 2025-04-14 02:30:17+00:00| published-proof-of-concept|...
CVE-2025-3542 H3C Magic NX15/Magic NX400/Magic R3010 HTTP POST Request getsyncpppoecfg FCGI_WizardProtoProcess command injection
A vulnerability, which was classified as critical, was found in H3C Magic NX15, Magic NX400 and Magic R3010 up to V100R014. This affects the function FCGIWizardProtoProcess of the file /api/wizard/getsyncpppoecfg of the component HTTP POST Request Handler. The manipulation leads to command...