VYPR
Medium severity6.5NVD Advisory· Published Oct 23, 2025· Updated May 20, 2026

CVE-2025-56007

CVE-2025-56007

Description

CRLF-injection in KeeneticOS before 4.3 at "/auth" API endpoint allows attackers to take over the device via adding additional users with full permissions by managing the victim to open page with exploit.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.