[GHSA-p69p-39vf-6x53] CRLF-injection in KeeneticOS before 4.3 at "/auth" API...

[notdenied]

Updates

• Affected products
• CVSS v3
• References
• Summary

Comments
I am the author of this CVE. :)

Added title, published a small writeup, some other minor changes.

Not sure if I have to check "Integrity" and "Availability" while the impact is router takeover (RCE) so skip them for now.

[notdenied]

Also, if it is possible, may you add me (Andrey Ryzhov) to the credits section, please? This is my CVE (if you need a proof, feel free to contact me).
I've already contacted MITRE for this addition, but also want to add it on Github.

[shelbyc]

Hi @notdenied, I can't review this advisory (and therefore can't add credit) because I can't find anything about KeeneticOS in Pub or any of the GitHub Advisory Database's supported ecosystems. From what I can see at https://github.com/orgs/keenetic/repositories?type=all, the vast majority of KeeneticOS repos are dominated by C. Does CVE-2025-56007 affect any packages in a supported ecosystem?

[notdenied]

Hi, @shelbyc! I apologize for the wait. This is my mistake, KeeneticOS is not a concrete public project in any ecosystem.
The issue is in the system itself, that is, as I know, not so open-source. The most related project is https://github.com/keenetic/keenetic-sdk -- build / unpack tools for the OS (in fact, it is a fork on openwrt project, but it doesn't matter). But it doesn't directly include the source code.

[shelbyc]

👋 Hi @notdenied, thanks for responding! Unfortunately, I can't review GHSA-p69p-39vf-6x53, GHSA-82pw-p4cc-5522, and GHSA-pggx-8r6v-m6gf and therefore must close these pull requests. Thanks for reaching out and have a good day.