Vulnerability in Netis Wf-2404
CVE-2025-2921
A vulnerability classified as critical has been found in Netis WF-2404 1.1.124EN. Affected is an unknown function of the file /etc/passwd. The manipulation with the input Realtek leads to use of default password. It is possible to launch t…
EPSS: 0.001 (26.2th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 6.4 (Medium). Vector: CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H.
Affected products
- Netis Wf-2404 — versions 1.1.124EN
Weakness classification (CWE)
References
- VDB-301896 | Netis WF-2404 passwd default password (vdb-entry, technical-description)
- VDB-301896 | CTI Indicators (IOB, IOC, IOA) (signature, permissions-required)
- Submit #521038 | Netis WF-2404 Router Firmware Version: APR-R4A4-V1.1.124EN-Netis(WF-2404),2010.12.14 16:18. Use of Weak Hash (third-party-advisory)
- scoozi.substack.com/p/hacking-a-netis-wf-2404-router-cont (exploit)
Frequently asked questions
- What is CVE-2025-2921?
- CVE-2025-2921 is a medium-severity vulnerability in Netis Wf-2404, classified under CWE-1393. CVSS score: 6.4/10. Published 2025-03-28.
- How severe is CVE-2025-2921?
- Medium severity. CVSS v3 base score is 6.4 out of 10.