Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-32107

OS command injection vulnerability exists in Deco BE65 Pro firmware versions prior to "Deco BE65 Pro(JP)_V1_1.1.2 Build 20250123". If this vulnerability is exploited, an arbitrary OS command may be executed by the user who can log in to the device.

Published

2025-04-11T09:15:22.167

Last Modified

2025-04-11T15:39:52.920

Status

Awaiting Analysis

Source

[email protected]

Severity

CVSSv3.0: 8.0 (HIGH)

Weaknesses

Type: Secondary
CWE-78

Affected Vendors & Products

References

https://jvn.jp/en/vu/JVNVU94912671/ ([email protected])
https://www.tp-link.com/jp/support/download/deco-be65-pro/#Firmware ([email protected])