CVE-2025-3759
08.05.2025, 10:15
Endpoint/cgi-bin-igd/netcore_set.cgiwhich is used for changing device configuration is accessible without authentication. This poses a significant security threat allowing for e.g: administrator account hijacking or AP password changing. The vendor was contacted early about this disclosure but did not respond in any way.Enginsight
Awaiting analysis
This vulnerability is currently awaiting analysis.
Common Weakness Enumeration