Medium severity6.5NVD Advisory· Published Oct 23, 2025· Updated May 20, 2026
CVE-2025-56007
CVE-2025-56007
Description
CRLF-injection in KeeneticOS before 4.3 at "/auth" API endpoint allows attackers to take over the device via adding additional users with full permissions by managing the victim to open page with exploit.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- KeeneticOS/KeeneticOSdescription
- Range: <4.3
Patches
Vulnerability mechanics
References
3- keenetic.com/global/securitynvdVendor Advisory
- keenetic.comnvdProduct
- github.com/notdenied/writeups/blob/main/CVE/CVE-2025-56007.mdnvd
News mentions
0No linked articles in our index yet.