Netis WF-2404 UART Vulnerability Allowing Runtime Activation of Test or Debug Logic

Vulnerability

A critical vulnerability has been identified in the Netis WF-2404 router, specifically in version 1.1.124EN. This issue arises within the UART component, where unknown code manipulation can activate test or debug logic during runtime. The vulnerability can be exploited physically on the device.

Impact

Exploitation of this vulnerability allows for the activation of test or debug logic on the router's hardware, potentially leading to further attacks or manipulation of the device.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

4.6

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

4.6

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Netis WF-2404 UART Vulnerability Allowing Runtime Activation of Test or Debug Logic

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating