Main Vulnerability Database Vulnerabilities #VU111135

Insufficient verification of data authenticity in DMH-WT7600NEX - CVE-2025-5832

Published: June 13, 2025

Vulnerability identifier: #VU111135

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2025-5832

CWE-ID: CWE-345

Exploitation vector: Local access

Exploit availability: No public exploit available

Vendor: Pioneer Electronics

Affected software:
DMH-WT7600NEX

Detailed vulnerability description

The vulnerability allows a local attacker to compromise the target system.

The vulnerability exists due to the lack of validating all the data in the software update. An attacker with physical access can bypass authentication and execute arbitrary code on the system.

How to mitigate CVE-2025-5832

Install updates from vendor's website.

Sources

https://www.zerodayinitiative.com/advisories/ZDI-25-352/

Insufficient verification of data authenticity in DMH-WT7600NEX - CVE-2025-5832

Detailed vulnerability description

How to mitigate CVE-2025-5832

Sources

Please verify you're human