CVE-2025-57176
published 2025-09-15CVE-2025-57176: On Ceragon Networks / Siklu Communication EtherHaul and MultiHaul Series microwave antennas before 2026-03-10, the rfpiped service on TCP port 555 allows…
PriorityP351medium6.5CVSS 3.1
AVNACLPRNUINSUCLILAN
EXPLOIT
EPSS
0.42%
33.4th percentile
On Ceragon Networks / Siklu Communication EtherHaul and MultiHaul Series microwave antennas before 2026-03-10, the rfpiped service on TCP port 555 allows unauthenticated file uploads to any writable location on the device. File upload packets use weak encryption (metadata only) with file contents transmitted in cleartext. No authentication or path validation is performed.
Affected
15 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ceragon_networks | siklu_communication_etherhaul_and_multihaul_series_microwave_antennas | >= Ceragon EtherHaul EH-1200FX < R7.7.12 | R7.7.12 |
| ceragon_networks | siklu_communication_etherhaul_and_multihaul_series_microwave_antennas | >= Ceragon EtherHaul EH-1200TX < R7.7.12 | R7.7.12 |
| ceragon_networks | siklu_communication_etherhaul_and_multihaul_series_microwave_antennas | >= Ceragon EtherHaul EH-2200FX < R7.7.12 | R7.7.12 |
| ceragon_networks | siklu_communication_etherhaul_and_multihaul_series_microwave_antennas | >= Ceragon EtherHaul EH-2500FX < R7.7.12 | R7.7.12 |
| ceragon_networks | siklu_communication_etherhaul_and_multihaul_series_microwave_antennas | >= Ceragon EtherHaul EH-500TX < R7.7.12 | R7.7.12 |
| ceragon_networks | siklu_communication_etherhaul_and_multihaul_series_microwave_antennas | >= Ceragon EtherHaul EH-5500FD < R7.7.12 | R7.7.12 |
| ceragon_networks | siklu_communication_etherhaul_and_multihaul_series_microwave_antennas | >= Ceragon EtherHaul EH-600TX < R7.7.12 | R7.7.12 |
| ceragon_networks | siklu_communication_etherhaul_and_multihaul_series_microwave_antennas | >= Ceragon EtherHaul EH-614TX < R7.7.12 | R7.7.12 |
| ceragon_networks | siklu_communication_etherhaul_and_multihaul_series_microwave_antennas | >= Ceragon EtherHaul EH-700TX < R7.7.12 | R7.7.12 |
| ceragon_networks | siklu_communication_etherhaul_and_multihaul_series_microwave_antennas | >= Ceragon EtherHaul EH-710TX < R7.7.12 | R7.7.12 |
| ceragon_networks | siklu_communication_etherhaul_and_multihaul_series_microwave_antennas | >= Ceragon EtherHaul EH-8010FX < R10.8.1 | R10.8.1 |
| ceragon_networks | siklu_communication_etherhaul_and_multihaul_series_microwave_antennas | >= Ceragon MultiHaul MH-B100-CCS < R2.4.0 | R2.4.0 |
| ceragon_networks | siklu_communication_etherhaul_and_multihaul_series_microwave_antennas | >= Ceragon MultiHaul MH-T200-CCC < R2.4.0 | R2.4.0 |
| ceragon_networks | siklu_communication_etherhaul_and_multihaul_series_microwave_antennas | >= Ceragon MultiHaul MH-T200-CNN < R2.4.0 | R2.4.0 |
| ceragon_networks | siklu_communication_etherhaul_and_multihaul_series_microwave_antennas | >= Ceragon MultiHaul MH-T201-CNN < R2.4.0 | R2.4.0 |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA ICS
Ceragon Siklu MultiHaul and EtherHaul Series
cisa_ics·2026-03-10·CVSS 6.5
[MEDIUM] Ceragon Siklu MultiHaul and EtherHaul Series
ICS Advisory
##
Ceragon Siklu MultiHaul and EtherHaul Series
Release DateMarch 10, 2026
Alert CodeICSA-26-069-04
Related topics:
Industrial Control System Vulnerabilities, Industrial Control Systems
View CSAF
## Summary
Successful exploitation of this vulnerability could result in arbitrary file upload to the target equipment.
The following versions of Ceragon Siklu MultiHaul and EtherHaul Series are affected:
- MultiHaul MH-B100-CCS
- MultiHaul MH-T200-CCC
- MultiHaul MH-T200-CNN
- MultiHaul MH-T201-CNN
- EtherHaul EH-8010FX
- EtherHaul EH-500TX
- EtherHaul EH-600TX
- EtherHaul EH-614TX
- EtherHaul EH-700TX
- EtherHaul EH-710TX
- EtherHaul EH-1200TX
- EtherHaul EH-1200FX
- EtherHaul EH-2200FX
- EtherHaul EH-2500FX
- EtherHaul EH-5500FD
CVSS
GHSA
GHSA-27hm-23w4-7mrj: The rfpiped service on TCP port 555 in Ceragon Networks / Siklu Communication EtherHaul series (8010TX and 1200FX tested) Firmware 7
ghsa_unreviewed·2025-09-15
CVE-2025-57176 [MEDIUM] CWE-434 GHSA-27hm-23w4-7mrj: The rfpiped service on TCP port 555 in Ceragon Networks / Siklu Communication EtherHaul series (8010TX and 1200FX tested) Firmware 7
The rfpiped service on TCP port 555 in Ceragon Networks / Siklu Communication EtherHaul series (8010TX and 1200FX tested) Firmware 7.4.0 through 10.7.3 allows unauthenticated file uploads to any writable location on the device. File upload packets use weak encryption (metadata only) with file contents transmitted in cleartext. No authentication or path validation is performed.
No detection rules found.
No writeups or analysis indexed.
2025-09-15
Published