CVE-2025-49163 – Arris VIP1113 Boot Image Injection Vulnerability

June 2, 2025

CVE ID : CVE-2025-49163

Published : June 3, 2025, 12:15 a.m. | 1 hour, 21 minutes ago

Description : Arris VIP1113 devices through 2025-05-30 with KreaTV SDK allow booting an arbitrary image via a crafted /usr/bin/gunzip file.

Severity: 6.7 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-49164 – Arris VIP1113 TV Set-Top Box Firmware Decryption Key Disclosure

Next Article CVE-2025-49162 – Arris VIP1113 TFTP File Overwrite Vulnerability

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

In MCP era API discoverability is now more important than ever

Black Myth: Wukong is coming to Xbox exactly one year after launching on PlayStation

Reddit wants to sue Anthropic for stealing its data, but the Claude AI manufacturers vow to “defend ourselves vigorously”

Satya Nadella says Microsoft makes money every time you use ChatGPT: “Every day that ChatGPT succeeds is a fantastic day”

Multiple reports suggest a Persona 4 Remake from Atlus will be announced during the Xbox Games Showcase

TC39 advances numerous proposals at latest meeting

TC39 advances numerous proposals at latest meeting

TypeBridge – zero ceremony, compile time rpc for client and server com

Simplify Cloud-Native Development with Quarkus Extensions

Black Myth: Wukong is coming to Xbox exactly one year after launching on PlayStation

Black Myth: Wukong is coming to Xbox exactly one year after launching on PlayStation

Reddit wants to sue Anthropic for stealing its data, but the Claude AI manufacturers vow to “defend ourselves vigorously”

Satya Nadella says Microsoft makes money every time you use ChatGPT: “Every day that ChatGPT succeeds is a fantastic day”

CVE-2025-49163 – Arris VIP1113 Boot Image Injection Vulnerability

Leadership, Trust, and Cyber Hygiene: NCSC’s Guide to Security Culture in Action

CVE-2025-4318 Critical RCE in AWS Amplify Codegen UI

How to request a change to a CVE record

Smashing Security podcast #410: Unleash the AI bot army against the scammers – now!

CVE-2025-48285 – Falang Multilanguage CSRF Vulnerability

DeepSeek AI Introduces CODEI/O: A Novel Approach that Transforms Code-based Reasoning Patterns into Natural Language Formats to Enhance LLMs’ Reasoning Capabilities

A Coding Guide to Build an Optical Character Recognition (OCR) App in Google Colab Using OpenCV and Tesseract-OCR

Amazon doesnâ€™t have enough data and funds to train genAI Alexa

Power Checklist: Managing and Troubleshooting Servers

Mozilla’s new open-source Gmail alternative puts your privacy first

CVE-2025-49163 – Arris VIP1113 Boot Image Injection Vulnerability

Related Posts