CVE-2025-44887

FW-WGS-804HPT v1.305b241111 was discovered to contain a stack overflow via the radIpkey parameter in the web_radiusSrv_post function.
References
Link Resource
https://lafdrew.github.io/2025/04/20/web-radiusSrv-post-radIp/ Exploit Third Party Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:planet:wgs-804hpt_firmware:1.305b241111:*:*:*:*:*:*:*
cpe:2.3:h:planet:wgs-804hpt:2.0:*:*:*:*:*:*:*

History

29 May 2025, 15:54

Type Values Removed Values Added
References () https://lafdrew.github.io/2025/04/20/web-radiusSrv-post-radIp/ - () https://lafdrew.github.io/2025/04/20/web-radiusSrv-post-radIp/ - Exploit, Third Party Advisory
Summary
  • (es) Se descubrió que FW-WGS-804HPT v1.305b241111 contiene un desbordamiento de pila a través del parámetro radIpkey en la función web_radiusSrv_post.
CPE cpe:2.3:h:planet:wgs-804hpt:2.0:*:*:*:*:*:*:*
cpe:2.3:o:planet:wgs-804hpt_firmware:1.305b241111:*:*:*:*:*:*:*
First Time Planet wgs-804hpt Firmware
Planet
Planet wgs-804hpt

21 May 2025, 14:15

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 9.8
CWE CWE-121

20 May 2025, 20:15

Type Values Removed Values Added
New CVE

Information

Published : 2025-05-20 20:15

Updated : 2025-05-29 15:54


NVD link : CVE-2025-44887

Mitre link : CVE-2025-44887

CVE.ORG link : CVE-2025-44887


JSON object : View

Products Affected

planet

  • wgs-804hpt
  • wgs-804hpt_firmware
CWE
CWE-121

Stack-based Buffer Overflow