Browse all 9 CVE security advisories affecting Netis. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Netis primarily develops networking equipment and routers for small to medium businesses, with core use cases in enterprise connectivity and internet access. Historically, their products have been vulnerable to multiple remote code execution (RCE) flaws, cross-site scripting (XSS), and privilege escalation vulnerabilities, often stemming from insufficient input validation and insecure default configurations. The company has addressed nine CVEs to date, with several critical RCE vulnerabilities allowing unauthorized device access. While no major public security incidents have been widely reported, the consistent pattern of vulnerabilities suggests potential risks in unpatched deployments, emphasizing the need for regular updates and network segmentation for deployed devices.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-9119 | Netis WF2419 Wireless Settings index.htm cross site scripting — WF2419CWE-79 | 2.4 | Low | 2025-08-18 |
| CVE-2025-2922 | Netis WF-2404 BusyBox Shell cleartext storage — WF-2404CWE-312 | 2.0 | Low | 2025-03-28 |
| CVE-2025-2921 | Netis WF-2404 passwd default password — WF-2404CWE-1393 | 6.4 | Medium | 2025-03-28 |
| CVE-2025-2920 | Netis WF-2404 passwd weak hash — WF-2404CWE-328 | 2.0 | Low | 2025-03-28 |
| CVE-2025-2919 | Netis WF-2404 UART hardware allows activation of test or debug logic at runtime — WF-2404CWE-1313 | 6.8 | Medium | 2025-03-28 |
| CVE-2025-1617 | Netis WF2780 Wireless 2.4G Menu cross site scripting — WF2780CWE-79 | 2.4 | Low | 2025-02-24 |
| CVE-2018-25069 | Netis Netcore Router hard-coded password — Netcore RouterCWE-259 | 7.3 | High | 2023-01-07 |
| CVE-2023-0114 | Netis Netcore Router Backup param.file.tgz cleartext storage in a file or on disk — Netcore RouterCWE-313 | 3.3 | Low | 2023-01-07 |
| CVE-2023-0113 | Netis Netcore Router Backup param.file.tgz information disclosure — Netcore RouterCWE-200 | 5.3 | Medium | 2023-01-07 |
This page lists every published CVE security advisory associated with Netis. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.