Main Vulnerability Database Vulnerabilities #VU111135

#VU111135 Insufficient verification of data authenticity in DMH-WT7600NEX - CVE-2025-5832

Published: June 13, 2025

Vulnerability identifier: #VU111135

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2025-5832

CWE-ID: CWE-345

Exploitation vector: Local access

Exploit availability: No public exploit available

Vulnerable software:
DMH-WT7600NEX

Software vendor:
Pioneer Electronics

Description

The vulnerability allows a local attacker to compromise the target system.

The vulnerability exists due to the lack of validating all the data in the software update. An attacker with physical access can bypass authentication and execute arbitrary code on the system.

Remediation

Install updates from vendor's website.

External links

https://www.zerodayinitiative.com/advisories/ZDI-25-352/

#VU111135 Insufficient verification of data authenticity in DMH-WT7600NEX - CVE-2025-5832

Description

Remediation

External links

Please verify you're human