CVE-2025-44039 – CP-XR-DE21-S 4G Router Firmware UART Console Authentication Bypass

May 13, 2025

CVE ID : CVE-2025-44039

Published : May 13, 2025, 3:15 p.m. | 1 hour, 9 minutes ago

Description : CP-XR-DE21-S -4G Router Firmware version 1.031.022 was discovered to contain insecure protections for its UART console. This vulnerability allows local attackers to connect to the UART port via a serial connection, read all boot sequence, and revealing internal system details and sensitive information without any authentication.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-44831 – EngineerCMS SQL Injection Vulnerability

Next Article CVE-2025-32756 – Fortinet FortiVoice Buffer Overflow Vulnerability

Highlights

CVE-2025-20199 – “Cisco IOS XE CLI Privilege Escalation Vulnerability”

May 7, 2025

CVE ID : CVE-2025-20199

Published : May 7, 2025, 6:15 p.m. | 1 hour, 20 minutes ago

Description : A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker with privilege level 15 to elevate privileges to root on the underlying operating system of an affected device.

This vulnerability is due to insufficient input validation when processing specific configuration commands. An attacker could exploit this vulnerability by including crafted input in specific configuration commands. A successful exploit could allow the attacker to elevate privileges to root on the underlying operating system of an affected device. The security impact rating (SIR) of this advisory has been raised to High because an attacker could gain access to the underlying operating system of the affected device and perform potentially undetected actions.

Note: The attacker must have privileges to enter configuration mode on the affected device. This is usually referred to as privilege level 15.

Severity: 4.6 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

GitHub’s CEO Thomas Dohmke steps down, triggering tighter integration of company within Microsoft

bitHuman launches SDK for creating AI avatars

Designing With AI, Not Around It: Practical Advanced Techniques For Product Design Use Cases

Why Companies Are Investing in AI-Powered React.js Development Services in 2025

I found a Google Maps alternative that won’t track you or drain your battery – and it’s free

I tested this new AI podcast tool to see if it can beat NotebookLM – here’s how it did

Microsoft’s new update makes your taskbar a productivity hub – here’s how

Save $50 on the OnePlus Pad 3 plus get a free gift – here’s the deal

Laravel Global Scopes: Automatic Query Filtering

Laravel Global Scopes: Automatic Query Filtering

Building MCP Servers in PHP

Filament v4 is Stable!

I Asked OpenAI’s New Open-Source AI Model to Complete a Children’s School Test — Is It Smarter Than a 10-Year-Old?

I Asked OpenAI’s New Open-Source AI Model to Complete a Children’s School Test — Is It Smarter Than a 10-Year-Old?

Madden NFL 26 Leads This Week’s Xbox Drops—But Don’t Miss These Hidden Gems

ASUS G14 Bulked Up for 2025—Still Sexy, Just a Bit Chonkier

CVE-2025-44039 – CP-XR-DE21-S 4G Router Firmware UART Console Authentication Bypass

Update WinRAR tools now: RomCom and others exploiting zero-day vulnerability

WinRAR zero-day exploited in espionage attacks against high-value targets

CVE-2025-32978 – Quest KACE SMA Unauthenticated License Replacement

CVE-2025-4003 – Apache RefindPlus null pointer dereference vulnerability

CVE-2025-40674 – osCommerce Reflected Cross-Site Scripting (XSS)

AI has 2 billion users, but only 3% pay

CVE-2025-20199 – “Cisco IOS XE CLI Privilege Escalation Vulnerability”

CVE-2025-5563 – WordPress WP-Addpub SQL Injection Vulnerability

Facebook privacy – why statements about copyright don’t do anything

China Launches the World’s First AI-Powered Underwater Data Centre: Here’s Why It Matters

CVE-2025-44039 – CP-XR-DE21-S 4G Router Firmware UART Console Authentication Bypass

Related Posts