CVE-2025-5145 | Netcore POWER13 up to 20250508 Query String /www/cgi-bin/ command injection

A vulnerability, which was classified as critical, was found in Netcore NBR1005GPEV2, B6V2, COVER5, NAP830, NAP930, NBR100V2, NBR200V2 and POWER13 up to 20250508. This affects an unknown part of the file /www/cgi-bin/ of the component Query String Handler. The manipulation leads to command injection.

This vulnerability is uniquely identified as CVE-2025-5145. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.VulDB Recent EntriesRead More