VYPR
Critical severity9.8NVD Advisory· Published Aug 14, 2025· Updated Apr 15, 2026

CVE-2025-43984

CVE-2025-43984

Description

An issue was discovered on KuWFi GC111 devices (Hardware Version: CPE-LM321_V3.2, Software Version: GC111-GL-LM321_V3.0_20191211). They are vulnerable to unauthenticated /goform/goform_set_cmd_process requests. A crafted POST request, using the SSID parameter, allows remote attackers to execute arbitrary OS commands with root privileges.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

1
  • KuWFi/GC111llm-create
    Range: = HW CPE-LM321_V3.2, SW GC111-GL-LM321_V3.0_20191211

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.