Bulletlte Na2 Firmware
Approved changes feed: RSS · Atom
cpe:2.3:o:microhardcorp:bulletlte-na2_firmware:*:*:*:*:*:*:*:*
part: o version: * update: *
| Vendor | Microhardcorp (fccf9c39-5ae8-53e8-b769-c9f607c76990) |
|---|---|
| Product | Bulletlte Na2 Firmware (d62b480a-2477-59fa-a30b-f2c021b85c63) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-35010 |
vulnerable | 2026-06-03 15:00:51.873695 |
Microhard Bullet-LTE and IPn4Gii AT+MNPINGTM Argument Injection
HIGH (7.1)
Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MNPINGTM command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')," and is estimated as a CVSS 7.1 (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N). This issue has not been generally fixed at the time of this CVE record's first publishing.
Published: 2025-06-08T21:06:16.368Z
Updated: 2025-06-09T03:16:04.477Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-35009 |
vulnerable | 2026-06-03 15:00:51.873112 |
Microhard Bullet-LTE and IPn4Gii AT+MNNETSP Argument Injection
HIGH (7.1)
Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MNNETSP command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')," and is estimated as a CVSS 7.1 (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N). This issue has not been generally fixed at the time of this CVE record's first publishing.
Published: 2025-06-08T21:06:05.426Z
Updated: 2025-06-09T03:17:10.831Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-35008 |
vulnerable | 2026-06-03 15:00:51.872320 |
Microhard Bullet-LTE and IPn4Gii AT+MMNAME Argument Injection
HIGH (7.1)
Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MMNAME command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')," and is estimated as a CVSS 7.1 (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N). This issue has not been generally fixed at the time of this CVE record's first publishing.
Published: 2025-06-08T21:05:52.090Z
Updated: 2025-06-09T03:18:02.029Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-35007 |
vulnerable | 2026-06-03 15:00:51.871581 |
Microhard Bullet-LTE and IPn4Gii AT+MFRULE Argument Injection
HIGH (7.1)
Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MFRULE command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')," and is estimated as a CVSS 7.1 (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N). This issue has not been generally fixed at the time of this CVE record's first publishing.
Published: 2025-06-08T21:05:38.698Z
Updated: 2025-06-09T03:18:53.105Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-35006 |
vulnerable | 2026-06-03 15:00:51.870694 |
Microhard Bullet-LTE and IPn4Gii AT+MFPORTFWD Argument Injection
HIGH (7.1)
Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MFPORTFWD command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')," and is estimated as a CVSS 7.1 (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N). This issue has not been generally fixed at the time of this CVE record's first publishing.
Published: 2025-06-08T21:05:25.706Z
Updated: 2025-06-09T03:19:46.712Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-35005 |
vulnerable | 2026-06-03 15:00:51.869859 |
Microhard Bullet-LTE and IPn4Gii AT+MFMAC Argument Injection
HIGH (7.1)
Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MFMAC command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')," and is estimated as a CVSS 7.1 (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N). This issue has not been generally fixed at the time of this CVE record's first publishing.
Published: 2025-06-08T21:05:15.936Z
Updated: 2025-06-09T03:20:54.997Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-35004 |
vulnerable | 2026-06-03 15:00:51.868018 |
Microhard Bullet-LTE and IPn4Gii AT+MFIP Argument Injection
HIGH (7.1)
Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MFIP command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')," and is estimated as a CVSS 7.1 (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N). This issue has not been generally fixed at the time of this CVE record's first publishing.
Published: 2025-06-08T21:05:01.219Z
Updated: 2025-06-09T03:22:14.184Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.