Kenwood Dmx958Xr vulnerabilities
29 known vulnerabilities affecting kenwood/dmx958xr.
Total CVEs
29
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM27
Vulnerabilities
Page 1 of 2
CVE-2025-8654P2HIGHCVSS 8.8v1.0.0509.31002025-08-06
CVE-2025-8654 [HIGH] CWE-78 CVE-2025-8654: Kenwood DMX958XR ReadMVGImage Command Injection Remote Code Execution Vulnerability. This vulnerabil
Kenwood DMX958XR ReadMVGImage Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Kenwood DMX958XR devices. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the ReadMVGImage function. The issue resul
nvd
CVE-2025-8653P2HIGHCVSS 8.8v1.0.0509.31002025-08-06
CVE-2025-8653 [HIGH] CWE-121 CVE-2025-8653: Kenwood DMX958XR JKRadioService Stack-based Buffer Overflow Remote Code Execution Vulnerability. Thi
Kenwood DMX958XR JKRadioService Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Kenwood DMX958XR. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the JKRadioService. The issue results
nvd
CVE-2025-8649P3MEDIUMCVSS 6.8v1.0.0509.31002025-08-06
CVE-2025-8649 [MEDIUM] CWE-78 CVE-2025-8649: Kenwood DMX958XR JKWifiService Command Injection Remote Code Execution Vulnerability. This vulnerabi
Kenwood DMX958XR JKWifiService Command Injection Remote Code Execution Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations of Kenwood DMX958XR devices. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the JKWifiService. The issue results
nvd
CVE-2025-8651P3MEDIUMCVSS 6.8v1.0.0509.31002025-08-06
CVE-2025-8651 [MEDIUM] CWE-78 CVE-2025-8651: Kenwood DMX958XR JKWifiService Command Injection Remote Code Execution Vulnerability. This vulnerabi
Kenwood DMX958XR JKWifiService Command Injection Remote Code Execution Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations of Kenwood DMX958XR devices. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the JKWifiService. The issue results
nvd
CVE-2025-8652P3MEDIUMCVSS 6.8v1.0.0509.31002025-08-06
CVE-2025-8652 [MEDIUM] CWE-78 CVE-2025-8652: Kenwood DMX958XR JKWifiService Command Injection Remote Code Execution Vulnerability. This vulnerabi
Kenwood DMX958XR JKWifiService Command Injection Remote Code Execution Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations of Kenwood DMX958XR devices. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the JKWifiService. The issue results
nvd
CVE-2025-8655P3MEDIUMCVSS 6.8v1.0.0509.31002025-08-06
CVE-2025-8655 [MEDIUM] CWE-78 CVE-2025-8655: Kenwood DMX958XR libSystemLib Command injection Remote Code Execution Vulnerability. This vulnerabil
Kenwood DMX958XR libSystemLib Command injection Remote Code Execution Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations of Kenwood DMX958XR devices. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the firmware update process. The issue
nvd
CVE-2025-8650P3MEDIUMCVSS 6.8v1.0.0509.31002025-08-06
CVE-2025-8650 [MEDIUM] CWE-78 CVE-2025-8650: Kenwood DMX958XR libSystemLib Command Injection Remote Code Execution Vulnerability. This vulnerabil
Kenwood DMX958XR libSystemLib Command Injection Remote Code Execution Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations of Kenwood DMX958XR devices. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the firmware update process. The issue
nvd
CVE-2025-8637P3MEDIUMCVSS 6.8v1.0.0005.4600 (SOC Image)2025-08-06
CVE-2025-8637 [MEDIUM] CWE-78 CVE-2025-8637: Kenwood DMX958XR Firmware Update Command Injection Vulnerability. This vulnerability allows physical
Kenwood DMX958XR Firmware Update Command Injection Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations of Kenwood DMX958XR devices. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the firmware update process. The issue results from the l
nvd
CVE-2025-8632P3MEDIUMCVSS 6.8v1.0.0005.4600 (SOC Image)2025-08-06
CVE-2025-8632 [MEDIUM] CWE-78 CVE-2025-8632: Kenwood DMX958XR Firmware Update Command Injection Vulnerability. This vulnerability allows physical
Kenwood DMX958XR Firmware Update Command Injection Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations of Kenwood DMX958XR devices. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the firmware update process. The issue results from the l
nvd
CVE-2025-8633P3MEDIUMCVSS 6.8v1.0.0005.4600 (SOC Image)2025-08-06
CVE-2025-8633 [MEDIUM] CWE-78 CVE-2025-8633: Kenwood DMX958XR Firmware Update Command Injection Vulnerability. This vulnerability allows physical
Kenwood DMX958XR Firmware Update Command Injection Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations of Kenwood DMX958XR devices. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the firmware update process. The issue results from the l
nvd
CVE-2025-8636P3MEDIUMCVSS 6.8v1.0.0005.4600 (SOC Image)2025-08-06
CVE-2025-8636 [MEDIUM] CWE-78 CVE-2025-8636: Kenwood DMX958XR Firmware Update Command Injection Vulnerability. This vulnerability allows physical
Kenwood DMX958XR Firmware Update Command Injection Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations of Kenwood DMX958XR devices. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the firmware update process. The issue results from the l
nvd
CVE-2025-8631P3MEDIUMCVSS 6.8v1.0.0005.4600 (SOC Image)2025-08-06
CVE-2025-8631 [MEDIUM] CWE-78 CVE-2025-8631: Kenwood DMX958XR Firmware Update Command Injection Vulnerability. This vulnerability allows physical
Kenwood DMX958XR Firmware Update Command Injection Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations of Kenwood DMX958XR devices. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the firmware update process. The issue results from the l
nvd
CVE-2025-8629P3MEDIUMCVSS 6.8v1.0.0005.4600 (SOC Image)2025-08-06
CVE-2025-8629 [MEDIUM] CWE-78 CVE-2025-8629: Kenwood DMX958XR Firmware Update Command Injection Vulnerability. This vulnerability allows physical
Kenwood DMX958XR Firmware Update Command Injection Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations of Kenwood DMX958XR devices. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the firmware update process. The issue results from the l
nvd
CVE-2025-8630P3MEDIUMCVSS 6.8v1.0.0005.4600 (SOC Image)2025-08-06
CVE-2025-8630 [MEDIUM] CWE-78 CVE-2025-8630: Kenwood DMX958XR Firmware Update Command Injection Vulnerability. This vulnerability allows physical
Kenwood DMX958XR Firmware Update Command Injection Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations of Kenwood DMX958XR devices. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the firmware update process. The issue results from the l
nvd
CVE-2025-8628P3MEDIUMCVSS 6.8v1.0.0005.4600 (SOC Image)2025-08-06
CVE-2025-8628 [MEDIUM] CWE-78 CVE-2025-8628: Kenwood DMX958XR Firmware Update Command Injection Vulnerability. This vulnerability allows physical
Kenwood DMX958XR Firmware Update Command Injection Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations of Kenwood DMX958XR devices. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the firmware update process. The issue results from the l
nvd
CVE-2025-8640P3MEDIUMCVSS 6.8v1.0.0005.4600 (SOC Image)2025-08-06
CVE-2025-8640 [MEDIUM] CWE-78 CVE-2025-8640: Kenwood DMX958XR Firmware Update Command Injection Vulnerability. This vulnerability allows physical
Kenwood DMX958XR Firmware Update Command Injection Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations of Kenwood DMX958XR devices. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the firmware update process. The issue results from the l
nvd
CVE-2025-8642P3MEDIUMCVSS 6.8v1.0.0005.4600 (SOC Image)2025-08-06
CVE-2025-8642 [MEDIUM] CWE-78 CVE-2025-8642: Kenwood DMX958XR Firmware Update Command Injection Vulnerability. This vulnerability allows physical
Kenwood DMX958XR Firmware Update Command Injection Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations of Kenwood DMX958XR devices. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the firmware update process. The issue results from the l
nvd
CVE-2025-8639P3MEDIUMCVSS 6.8v1.0.0005.4600 (SOC Image)2025-08-06
CVE-2025-8639 [MEDIUM] CWE-78 CVE-2025-8639: Kenwood DMX958XR Firmware Update Command Injection Vulnerability. This vulnerability allows physical
Kenwood DMX958XR Firmware Update Command Injection Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected Kenwood DMX958XR devices. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the firmware update process. The issue results from the lack of proper val
nvd
CVE-2025-8634P3MEDIUMCVSS 6.8v1.0.0005.4600 (SOC Image)2025-08-06
CVE-2025-8634 [MEDIUM] CWE-78 CVE-2025-8634: Kenwood DMX958XR Firmware Update Command Injection Vulnerability. This vulnerability allows physical
Kenwood DMX958XR Firmware Update Command Injection Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations of Kenwood DMX958XR devices. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the firmware update process. The issue results from the l
nvd
CVE-2025-8635P3MEDIUMCVSS 6.8v1.0.0005.4600 (SOC Image)2025-08-06
CVE-2025-8635 [MEDIUM] CWE-78 CVE-2025-8635: Kenwood DMX958XR Firmware Update Command Injection Vulnerability. This vulnerability allows physical
Kenwood DMX958XR Firmware Update Command Injection Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations of Kenwood DMX958XR devices. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the firmware update process. The issue results from the l
nvd
1 / 2Next →