Siklu EtherHaul Series Suffers RCE & Arbitrary File Upload Vulnerabilities

Security researcher Semaja2 has disclosed a Remote Code Execution and Arbitrary File Upload vulnerability in Siklu EtherHaul Series devices running firmware 7.4.0 – 10.7.3. These allow attackers to execute code without authentication on the devices, which can lead to full control being obtained. These were discovered during his audit of previous vulnerabilities to see if the company had fixed past disclosures in an efficient manner.

As of the vulnerability release there it no patch to fix the issues.

Downloads

CVE-2025-57174 - EH-8010 / EH-1200 Remote Command Execution Exploit

CVE-2025-57176 - EH-8010 / EH-1200 Arbitrary File Upload Exploit

Vulnerabilities

Appsmith Vulnerable to Account Takeover Exploit – CVE-2026-22794

Admin
News

SoundCloud Breach Exposes 29.8 Million Users Data

Admin
News

Curl To End Bug Bounty Program Due to AI and Low Quality Submissions

Admin
News

Nike Has 1.4 Terabytes of Data Stolen by Hacker Group WorldLeaks

Admin

Siklu EtherHaul Series Suffers RCE & Arbitrary File Upload Vulnerabilities

Downloads

Trending

Appsmith Vulnerable to Account Takeover Exploit – CVE-2026-22794

SoundCloud Breach Exposes 29.8 Million Users Data

Curl To End Bug Bounty Program Due to AI and Low Quality Submissions

Nike Has 1.4 Terabytes of Data Stolen by Hacker Group WorldLeaks