CVE-2025-69755
Description
Neterbit NW-431F Router vNW-431F-20241014-IR03 is vulnerable to remote command injection via the at_command.asp interface, allowing code execution and information disclosure.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Neterbit NW-431F Router vNW-431F-20241014-IR03 is vulnerable to remote command injection via the at_command.asp interface, allowing code execution and information disclosure.
Vulnerability
An issue exists in Neterbit NW-431F Router, specifically version vNW-431F-20241014-IR03, which allows a remote attacker to exploit the at_command.asp interface. This vulnerability enables the execution of arbitrary commands and the retrieval of sensitive information without proper authentication or authorization [1].
Exploitation
An attacker can exploit this vulnerability by sending crafted AT commands directly to the device through the http://192.168.1.1/at_command.asp web interface. For example, sending the command AT+CMGL="ALL" allows an attacker to read SMS messages, demonstrating that the application executes commands without adequate authentication or authorization [1].
Impact
Successful exploitation of this vulnerability allows a remote attacker to obtain sensitive information, such as SMS messages, and execute arbitrary code on the affected Neterbit NW-431F Router. The scope and privilege level of the compromise are not explicitly detailed in the available references [1].
Mitigation
As of the available information, a fixed version for Neterbit NW-431F Router vNW-431F-20241014-IR03 is not yet available. No workarounds or specific mitigation steps beyond preventing access to the at_command.asp interface are disclosed in the provided references [1].
AI Insight generated on Jun 4, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
1- Range: vNW-431F-20241014-IR03
Patches
0No patches discovered yet.
Vulnerability mechanics
Root cause
"The at_command.asp interface does not perform proper authentication or authorization for executing AT commands."
Attack vector
A remote attacker can send crafted AT commands directly to the device via the at_command.asp interface without any authentication. The attacker can then observe that the application executes these commands, such as reading SMS messages, thereby obtaining sensitive information and potentially executing arbitrary code [ref_id=1].
Affected code
The vulnerability lies within the at_command.asp interface of the Neterbit NW-431F Router.
What the fix does
The advisory does not specify a fixed version or provide details on a patch. It indicates that a fixed version is not available. Users are advised to consult the vendor for remediation guidance.
Preconditions
- networkThe router must be accessible over the network.
- inputThe attacker must be able to send AT commands to the at_command.asp interface.
Reproduction
An attacker can send AT commands directly to the device via webpage (at_command.asp) interface.
go to http://192.168.1.1/at_command.asp page.
type and send AT command like: AT+CMGL="ALL"
Observe that the application execute commands (like read SMS messages) without proper authentication or authorization. [ref_id=1]
Generated on Jun 4, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
2News mentions
0No linked articles in our index yet.