Denial of Service Vulnerability in H3C R2+ProG by H3C
CVE-2025-4997
7.1HIGH
What is CVE-2025-4997?
A denial of service vulnerability exists in the H3C R2+ProG affecting various components. Specifically, the flaw resides in the HTTP POST Request Handler related to functions such as UpdateWanParams and SetAPInfoById. An attacker can exploit this vulnerability remotely by manipulating certain parameters, potentially leading to service disruption. Despite notifications, the vendor has not responded to the disclosure, raising concerns about the security of the product.
Affected Version(s)
R2+ProG 200R004