CVE-2025-4747 | Bohua NetDragon Firewall 1.0 ip_status.php subnet command injection

Inserito da Angelo Barbosa | Mag 15, 2025 | CVE

A vulnerability was found in Bohua NetDragon Firewall 1.0 and classified as critical. This issue affects some unknown processing of the file /systemstatus/ip_status.php. The manipulation of the argument subnet leads to command injection.

The identification of this vulnerability is CVE-2025-4747. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-4747 | Bohua NetDragon Firewall 1.0 ip_status.php subnet command injection

Post correlati

CVE-2022-49666 | Linux Kernel up to 5.15.52/5.18.9 virt_addr_valid high_memory Privilege Escalation

CVE-2024-42676 | Huizhi Enterprise Resource Management System up to 1.0 DNPageAjaxPostBack /nssys/common/Upload unrestricted upload

CVE-2024-47944 | Rittal IoT Interface/CMC III Processing Unit prior 6.21.00.2 Firmware Upgrade missing protection mechanism for alternate hardware interface

CVE-2024-5066 | PHPGurukul Online Course Registration System 3.1 pincode-verification.php pincode sql injection