CVE-2025-60772

Description

Improper authentication in the web-based management interface of NETLINK HG322G V1.0.00-231017, allows a remote unauthenticated attacker to escalate privileges and lock out the legitimate administrator via crafted HTTP requests.

PUBLISHED Reserved 2025-09-26 | Published 2025-10-21 | Updated 2025-10-22 | Assigner mitre

References

github.com/...ain/vendors/netlink/CVE-2025-60772/advisory.md exploit

netlinkict.com/shop/gpon-ont/gpon-ont-hg322g/

github.com/...ain/vendors/netlink/CVE-2025-60772/advisory.md

cve.org (CVE-2025-60772)

nvd.nist.gov (CVE-2025-60772)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.