CVE-2025-68717 — CRITICAL (9.4)

Vulnerability Description

KAYSUS KS-WR3600 routers with firmware 1.0.5.9.1 allow authentication bypass during session validation. If any user is logged in, endpoints such as /cgi-bin/system-tool accept unauthenticated requests with empty or invalid session values. This design flaw lets attackers piggyback on another user's active session to retrieve sensitive configuration data or execute privileged actions without authentication.

CVSS Score

9.4

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

LOW

Affected Products

Vendor	Product	Versions
Kaysus	Ks-Wr3600 Firmware	1.0.5.9.1
Kaysus	Ks-Wr3600	-

Related Weaknesses (CWE)

CWE-287

References

https://github.com/actuator/cve/blob/main/KAYSUS/CVE-2025-68717.txtThird Party Advisory
https://github.com/actuator/cve/tree/main/KAYSUSExploit
https://www.kaysus.com/ks_wr3600__wifi_7_be3600_wireless_router.htmlProduct

FAQ

What is CVE-2025-68717?

CVE-2025-68717 is a vulnerability with a CVSS score of 9.4 (CRITICAL). KAYSUS KS-WR3600 routers with firmware 1.0.5.9.1 allow authentication bypass during session validation. If any user is logged in, endpoints such as /cgi-bin/system-tool accept unauthenticated requests...

How severe is CVE-2025-68717?

CVE-2025-68717 has been rated CRITICAL with a CVSS base score of 9.4/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2025-68717?

Check the references section above for vendor advisories and patch information. Affected products include: Kaysus Ks-Wr3600 Firmware, Kaysus Ks-Wr3600.