Details of VAR-202506-2998

ID

VAR-202506-2998

TITLE

H3C Magic NX15000 10G Wi-Fi 6 Router from H3C Technologies Co., Ltd. Has a Command Execution Vulnerability

Trust: 0.6

sources: CNVD: CNVD-2025-13133

DESCRIPTION

H3C Magic NX15000 10G Wi-Fi 6 Router is a high-end router for users and groups who pursue full-house coverage and high-quality networks. H3C Magic NX15000 10G Wi-Fi 6 Router of H3C Technologies Co., Ltd. has a command execution vulnerability. Attackers can use the vulnerability to inject malicious code and obtain server permissions.

Trust: 0.6

sources: CNVD: CNVD-2025-13133

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2025-13133

AFFECTED PRODUCTS

vendor:

h3c

model:

magic nx15000 10g wi-fi router v100r005

scope:

version:

Trust: 0.6

sources: CNVD: CNVD-2025-13133

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2025-13133
value:	HIGH
Trust: 0.6

CNVD:	CNVD-2025-13133
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2025-13133

EXTERNAL IDS

db:

CNVD

id:

CNVD-2025-13133

Trust: 0.6

sources: CNVD: CNVD-2025-13133

SOURCES

db:

CNVD

id:

CNVD-2025-13133

LAST UPDATE DATE

2025-06-27T23:18:57.407000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2025-13133

date:

2025-06-20T00:00:00

SOURCES RELEASE DATE

db:

CNVD

id:

CNVD-2025-13133

date:

2025-06-13T00:00:00