VYPR

MBX-PRE-D67F

by Russound

CVEs (1)

  • CVE-2025-50475CriJul 31, 2025
    risk 0.64cvss 9.8epss 0.08

    An OS command injection vulnerability exists in Russound MBX-PRE-D67F firmware version 3.1.6, allowing unauthenticated attackers to execute arbitrary commands as root via crafted input to the hostname parameter in network configuration requests. This vulnerability stems from…