CVE-2025-34068

CRITICAL EPSS 55.0%
Published Jul 15, 202511mo ago · Modified Jun 17, 20261w ago
9.3 CVSS 4.0
Critical
Find Similar
Published Jul 15, 2025 11mo ago
Last Modified Jun 17, 2026 1w ago

Description

An unauthenticated remote command execution vulnerability exists in Samsung WLAN AP WEA453e firmware prior to version 5.2.4.T1 via improper input validation in the “Tech Support” diagnostic functionality. The command1 and command2 POST or GET parameters accept arbitrary shell commands that are executed with root privileges on the underlying operating system. An attacker can exploit this by crafting a request that injects shell commands to create output files in writable directories and then access their contents via the download endpoint. This flaw allows complete compromise of the device without authentication. Exploitation evidence was observed by the Shadowserver Foundation on 2025-02-04 UTC.

CVSS Details

Base Score
9.3
Exploitability
Impact
Vector string
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope X

Threat Intelligence

EPSS Exploit Probability
55.0% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-306 Missing Authentication for Critical Function Authentication

References 5

  • fortiguard.fortinet.com https://fortiguard.fortinet.com/encyclopedia/ips/57323
  • omriinbar.medium.com https://omriinbar.medium.com/samsung-wlan-ap-wea453e-vulnerabilities-7aa4a57d4dba
  • s4e.io https://s4e.io/tools/samsung-wlan-ap-remote-code-execution
  • samsung.com https://www.samsung.com/us/business/support/owners/product/400-series-wea453/
  • vulncheck.com https://www.vulncheck.com/advisories/samsung-wlan-ap-wea453e-unauthenticated-rce

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.