VYPR

sgwbox N3

by Shiguangwu

CVEs (7)

  • CVE-2025-14704HigDec 15, 2025
    risk 0.47cvss 7.3epss 0.11

    A vulnerability was found in Shiguangwu sgwbox N3 2.0.25. The impacted element is an unknown function of the file /eshell of the component API. The manipulation results in path traversal. It is possible to launch the attack remotely. The exploit has been made public and could be…

  • CVE-2025-14709Dec 15, 2025
    risk 0.00cvss epss 0.05

    A security vulnerability has been detected in Shiguangwu sgwbox N3 2.0.25. Affected by this issue is some unknown functionality of the file /usr/sbin/http_eshell_server of the component WIRELESSCFGGET Interface. The manipulation of the argument params leads to buffer overflow.…

  • CVE-2025-14708Dec 15, 2025
    risk 0.00cvss epss 0.06

    A weakness has been identified in Shiguangwu sgwbox N3 2.0.25. Affected by this vulnerability is an unknown functionality of the file /usr/sbin/http_eshell_server of the component WIREDCFGGET Interface. Executing manipulation of the argument params can lead to buffer overflow.…

  • CVE-2025-14707Dec 15, 2025
    risk 0.00cvss epss 0.16

    A security flaw has been discovered in Shiguangwu sgwbox N3 2.0.25. Affected is an unknown function of the file /usr/sbin/http_eshell_server of the component DOCKER Feature. Performing manipulation of the argument params results in command injection. The attack may be initiated…

  • CVE-2025-14706Dec 15, 2025
    risk 0.00cvss epss 0.16

    A vulnerability was identified in Shiguangwu sgwbox N3 2.0.25. This impacts an unknown function of the file /usr/sbin/http_eshell_server of the component NETREBOOT Interface. Such manipulation leads to command injection. The attack can be launched remotely. The exploit is…

  • CVE-2025-14705Dec 15, 2025
    risk 0.00cvss epss 0.15

    A vulnerability was determined in Shiguangwu sgwbox N3 2.0.25. This affects an unknown function of the component SHARESERVER Feature. This manipulation of the argument params causes command injection. The attack can be initiated remotely. The exploit has been publicly disclosed…

  • CVE-2025-14703Dec 15, 2025
    risk 0.00cvss epss 0.01

    A vulnerability has been found in Shiguangwu sgwbox N3 2.0.25. The affected element is an unknown function of the file /fsnotify of the component POST Message Handler. The manipulation of the argument token leads to improper authentication. It is possible to initiate the attack…