top of page
perceptive_background_267k.jpg

SAPIDO RB-1732 V2.0.43 contains a remote command execution vulnerability that allows unauthenticated attackers to execute arbitrary system commands by submittin…

Published:

10 March 2026 at 23:00:00

Alert date:

11 March 2026 at 20:06:05

Source:

nvd.nist.gov

Click to open the original link from this advisory

Network Infrastructure, Mobile & IoT

CVE-2019-25487 affects SAPIDO RB-1732 router version 2.0.43, containing a critical remote command execution vulnerability. The flaw allows unauthenticated attackers to execute arbitrary system commands through the formSysCmd endpoint. Attackers can exploit this by sending POST requests with malicious shell commands in the sysCmd parameter. The vulnerability grants router-level privileges to successful attackers. This represents a significant security risk for affected network infrastructure devices.

Technical details

Mitigation steps:

Affected products:

SAPIDO RB-1732

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2019-25487
https://www.exploit-db.com/exploits/47031
https://www.vulncheck.com/advisories/sapido-rb-remote-command-execution-via-formsyscmd

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page