High severityNVD Advisory· Published Sep 6, 2025· Updated Apr 15, 2026
CVE-2025-9961
CVE-2025-9961
Description
An authenticated attacker may remotely execute arbitrary code via the CWMP binary on the devices AX10 and AX1500.
The exploit can only be conducted via a Man-In-The-Middle (MITM) attack.
This issue affects AX10 V1/V1.2/V2/V2.6/V3/V3.6: before 1.2.1; AX1500 V1/V1.20/V1.26/V1.60/V1.80/V2.60/V3.6: before 1.3.11.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <1.3.11
- Range: <1.2.1
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.