CVE-2025-5147

CVE-2025-5147 affects Netcore NBR1005GPEV2, NBR200V2, and B6V2 (up to 20250508). The vulnerability resides in the function tools_ping in the file /usr/bin/network_tools, where improper handling of the url argument allows command injection. Exploitation can be remote, and public disclosure exists....

PT-2025-22858 · Netcore · Netcore B6V2 +2

Name of the Vulnerable Software and Affected Versions: Netcore NBR1005GPEV2 versions up to 20250508 Netcore NBR200V2 versions up to 20250508 Netcore B6V2 versions up to 20250508 Description: A critical issue affects the tools ping function of the file /usr/bin/network tools. The manipulation of t...

VulnCheck KEV: CVE-2021-28151

Hongdian H8922 3.0.5 devices allow OS command injection via shell metacharacters into the ip-address aka Destination field to the tools.cgi ping command, which is accessible with the username guest and password guest...

CVE-2020-21883

Unibox U-50 2.4 and UniBox Enterprise Series 2.4 and UniBox Campus Series 2.4 contain a OS command injection vulnerability in /tools/ping, which can leads to complete device takeover...