Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5
CVE-2025-56007
- EPSS 0.07%
- Veröffentlicht 23.10.2025 00:00:00
- Zuletzt bearbeitet 04.11.2025 13:10:02
CRLF-injection in KeeneticOS before 4.3 at "/auth" API endpoint allows attackers to take over the device via adding additional users with full permissions by managing the victim to open page with exploit.
6.1
CVE-2025-56008
- EPSS 0.06%
- Veröffentlicht 23.10.2025 00:00:00
- Zuletzt bearbeitet 04.11.2025 13:09:54
Cross site scripting (XSS) vulnerability in KeeneticOS before 4.3 at "Wireless ISP" page allows attackers located near to the router to takeover the device via adding additional users with full permissions.
5.3
CVE-2025-56009
- EPSS 0.03%
- Veröffentlicht 23.10.2025 00:00:00
- Zuletzt bearbeitet 04.11.2025 13:09:44
Cross site request forgery (CSRF) vulnerability in KeeneticOS before 4.3 at "/rci" API endpoint allows attackers to take over the device via adding additional users with full permissions by managing the victim to open page with exploit.
1