What is the CVSS score of EUVD-2025-17402?

EUVD-2025-17402 has a CVSS 3.1 base score of 7.1 (High). CVSS vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N. EPSS exploitation probability: 0.2%.

Which versions of Bulletlte Na2 Firmware are affected by EUVD-2025-17402?

A high-severity vulnerability in Microhard cellular modules (BulletLTE-NA2, IPn4Gii-NA2) allows authenticated users to execute arbitrary commands and escalate privileges on affected devices.

Is there a public PoC exploit available for EUVD-2025-17402?

Yes, a public proof-of-concept exploit is available for EUVD-2025-17402. Prioritise patching immediately. EPSS: 0.2%.

How to fix or mitigate EUVD-2025-17402?

Within 24 hours: Identify all systems using affected Microhard modules and isolate them from production networks if possible; restrict administrative access to these devices. Within 7 days: Implement network segmentation to limit lateral movement from compromised devices; disable the AT+MFPORTFWD command if operationally feasible; review access logs for suspicious activity. Within 30 days: Contact Microhard for patch availability and deployment timeline; evaluate alternative cellular module vendors if patches remain unavailable; conduct security assessments of affected device deployments.

Bulletlte Na2 Firmware EUVD-2025-17402

| CVE-2025-35006 HIGH

Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') (CWE-88)

2025-06-08 cve@takeonme.org

Privilege Escalation Command Injection Bulletlte Na2 Firmware Ipn4gii Na2 Firmware

7.1

CVSS 3.1 · NVD

Severity by source

NVD PRIMARY

7.1 HIGH

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

None

Lifecycle Timeline

EUVD ID Assigned

Mar 14, 2026 - 19:17 euvd

EUVD-2025-17402

Analysis Generated

Mar 14, 2026 - 19:17 vuln.today

PoC Detected

Jan 12, 2026 - 16:54 vuln.today

Public exploit code

CVE Published

Jun 08, 2025 - 21:15 nvd

HIGH 7.1

DescriptionCVE.org

Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MFPORTFWD command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')," and is estimated as a CVSS 7.1 (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N). This issue has not been generally fixed at the time of this CVE record's first publishing.

AnalysisAI

Post-authentication command injection vulnerability in the AT+MFPORTFWD command affecting Microhard BulletLTE-NA2 and IPn4Gii-NA2 products. An authenticated local attacker can exploit improper argument delimiter neutralization (CWE-88) to achieve privilege escalation, potentially gaining unauthorized access to system resources. As of the CVE publication date, no general fix has been released, and the vulnerability carries a CVSS score of 7.1 with high confidentiality and integrity impact.

Technical ContextAI

The vulnerability exists in the AT command interface (AT+ protocol) commonly used in cellular and wireless modems for device control and configuration. The Microhard BulletLTE-NA2 and IPn4Gii-NA2 are industrial-grade LTE modems used in remote IoT, telemetry, and critical infrastructure applications. The root cause is CWE-88 (Improper Neutralization of Argument Delimiters in a Command), which occurs when user-supplied input to the AT+MFPORTFWD command is not properly sanitized or escaped before being passed to shell or system command execution. This allows an attacker to inject additional commands or arguments that alter the intended command logic. The affected products likely process port forwarding configuration through AT commands without adequate input validation, enabling argument injection that bypasses intended command boundaries.

RemediationAI

Immediate actions: (1) Restrict local access to affected Microhard devices to trusted administrators only; implement physical or network-level access controls to AT command interfaces; (2) Disable AT+MFPORTFWD command if port forwarding is not required; (3) Monitor device logs for suspicious AT command sequences; (4) Isolate affected devices to secure network segments away from untrusted hosts. Long-term: Monitor Microhard's security advisories and vendor website for firmware updates addressing CVE-2025-35006. Contact Microhard directly for patch timelines. If patches are released, apply them immediately to all affected BulletLTE-NA2 and IPn4Gii-NA2 devices. For products incorporating these modems, ensure vendor integration patches are applied. Consider architecture review to minimize reliance on untrusted local access to modem AT interfaces.

EUVD-2025-17402 vulnerability details – vuln.today

Back