What is CVE-2025-34117?

CVE-2025-34117 is a vulnerability in Netcore Technology Router Firmware, classified under Hidden Functionality. Published 2025-07-16.

Is CVE-2025-34117 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

RCE in Netcore Technology Router Firmware

CVE-2025-34117

A remote code execution vulnerability exists in multiple Netcore and Netis routers models with firmware released prior to August 2014 due to the presence of an undocumented backdoor listener on UDP port 53413. Exact version boundaries rema…

EPSS: 0.569 (98.2th percentile) — read the EPSS interpretation.

Affected products

Netcore Technology Router Firmware — versions Prior to August 2014
Netis Router Firmware — versions Prior to August 2014

Weakness classification (CWE)

Public proof-of-concept exploits

rapid7/metasploit-framework

References

web.archive.org/web/20140828114943/http://blog.trendmicro.com/trendlabs-securit… (third-party-advisory, technical-description)
www.seebug.org/vuldb/ssvid-90227 (third-party-advisory, technical-description)
raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/l… (exploit)
www.shadowserver.org/what-we-do/network-reporting/netcore-netis-router-vulnerab… (third-party-advisory)
vulners.com/metasploit/MSF:EXPLOIT-LINUX-MISC-NETCORE_UDP_53413_BACKDOOR- (third-party-advisory, exploit)
www.vulncheck.com/advisories/netcore-netis-routers-backdoor-rce (third-party-advisory)
www.exploit-db.com/exploits/43387 (exploit)

Frequently asked questions

What is CVE-2025-34117?: CVE-2025-34117 is a vulnerability in Netcore Technology Router Firmware, classified under Hidden Functionality. Published 2025-07-16.
Is CVE-2025-34117 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.