VYPR
Unrated severityNVD Advisory· Published Mar 9, 2026· Updated Mar 9, 2026

Arbitrary Write with wwwupload.cgi

CVE-2025-41758

Description

A low-privileged remote attacker can exploit an arbitrary file write vulnerability in the wwupload.cgi endpoint. Due to path traversal this can lead to overwriting arbitrary files on the device and achieving a full system compromise.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • MBS/UBR-01 Mk IIv5
    Range: 0.0.0
  • MBS/UBR-02v5
    Range: 0.0.0
  • MBS/UBR-LONv5
    Range: 0.0.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.