Vulnerability Database

309,469

Total vulnerabilities in the database

CVE-2025-4446

A vulnerability has been found in H3C GR-5400AX up to 100R008 and classified as critical. This vulnerability affects the function Edit_List_SSID of the file /goform/aspForm. The manipulation of the argument param leads to buffer overflow. The attack needs to be approached within the local network.

Published: May 9, 2025
Updated: Nov 16, 2025
CVE: CVE-2025-4446
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8
AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 7.7
AV:A/AC:L/Au:S/C:C/I:C/A:C

CWEs:

CWE-119
CWE-120

Affected Software
References

No affected software listed.

https://github.com/CH13hh/tmp_store_cc/blob/main/H3C%20GB5400AX/5.md
https://vuldb.com/?ctiid.308056
https://vuldb.com/?id.308056
https://vuldb.com/?submit.561866

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo