CVE-2025-44652

In Netgear RAX30 V1.0.10.943, the USERLIMITGLOBAL option is set to 0 in multiple bftpd-related configuration files. This can cause DoS attacks when unlimited users are connected...

CVE-2025-44652

In Netgear RAX30 V1.0.10.943, the USERLIMITGLOBAL option is set to 0 in multiple bftpd-related configuration files. This can cause DoS attacks when unlimited users are connected...

CVE-2025-44650

In Netgear R7000 V1.3.1.6410.1.36 and EAX80 V1.0.1.701.0.2, the USERLIMITGLOBAL option is set to 0 in the bftpd.conf configuration file. This can cause DoS attacks when unlimited users are connected...

CVE-2025-44658

In Netgear RAX30 V1.0.10.94, a PHP-FPM misconfiguration vulnerability is caused by not following the specification to only limit FPM to .php extensions. An attacker may exploit this by uploading malicious scripts disguised with alternate extensions and tricking the web server into executing them ...

CVE-2025-44658

In Netgear RAX30 V1.0.10.94, a PHP-FPM misconfiguration vulnerability is caused by not following the specification to only limit FPM to .php extensions. An attacker may exploit this by uploading malicious scripts disguised with alternate extensions and tricking the web server into executing them ...

CVE-2025-44650

In Netgear R7000 V1.3.1.6410.1.36 and EAX80 V1.0.1.701.0.2, the USERLIMITGLOBAL option is set to 0 in the bftpd.conf configuration file. This can cause DoS attacks when unlimited users are connected...

Netgear RAX30 安全漏洞

The NETGEAR RAX30 is a dual-band wireless router from NETGEAR. A security vulnerability exists in Netgear RAX30 version V1.0.10.94, which can be exploited by an attacker to potentially cause remote code execution...

CVE-2025-44650

In Netgear R7000 V1.3.1.6410.1.36 and EAX80 V1.0.1.701.0.2, the USERLIMITGLOBAL option is set to 0 in the bftpd.conf configuration file. This can cause DoS attacks when unlimited users are connected...

CVE-2025-44652

In Netgear RAX30 V1.0.10.943, the USERLIMITGLOBAL option is set to 0 in multiple bftpd-related configuration files. This can cause DoS attacks when unlimited users are connected...

PT-2025-30315

Name of the Vulnerable Software and Affected Versions Netgear RAX30 version 1.0.10.94 3 Description The USERLIMIT GLOBAL option is set to 0 in multiple bftpd-related configuration files, potentially leading to denial-of-service DoS attacks when an unlimited number of users connect. Recommendation...

CVE-2025-44652

CVE-2025-44652 affects Netgear RAX30 with version V1.0.10.94_3. The issue is that the USERLIMIT_GLOBAL option is set to 0 in multiple bftpd-related configuration files , which can cause a denial of service when unlimited users connect. The core details come from multiple sources (including Red Ha...

PT-2025-30289 · NetGear · Netgear R7000 +1

Name of the Vulnerable Software and Affected Versions: Netgear R7000 version 1.3.1.64 10.1.36 Netgear EAX80 version 1.0.1.70 1.0.2 Description: The USERLIMIT GLOBAL option is set to 0 in the bftpd.conf configuration file, potentially leading to Denial-of-Service DoS attacks when an unlimited numb...

CVE-2025-44658

In Netgear RAX30 V1.0.10.94, a PHP-FPM misconfiguration vulnerability is caused by not following the specification to only limit FPM to .php extensions. An attacker may exploit this by uploading malicious scripts disguised with alternate extensions and tricking the web server into executing them ...

PT-2025-30295 · NetGear · Netgear Rax30

Name of the Vulnerable Software and Affected Versions: Netgear RAX30 version 1.0.10.94 Description: A PHP-FPM misconfiguration vulnerability exists due to not restricting PHP-FPM to only handle .php extensions. An attacker can exploit this by uploading malicious scripts with alternate extensions...

Netgear R7000和Netgear EAX80 安全漏洞

Netgear R7000 and Netgear EAX80 are both products of Netgear, Inc.Netgear R7000 is a wireless router.Netgear EAX80 is a mesh extender. A security vulnerability exists in the Netgear R7000 version V1.3.1.6410.1.36 and the Netgear EAX80 version V1.0.1.701.0.2, which stems from the USERLIMITGLOBAL...

CVE-2025-44658

In Netgear RAX30 V1.0.10.94, a PHP-FPM misconfiguration vulnerability is caused by not following the specification to only limit FPM to .php extensions. An attacker may exploit this by uploading malicious scripts disguised with alternate extensions and tricking the web server into executing them ...

CVE-2025-44652

In Netgear RAX30 V1.0.10.943, the USERLIMITGLOBAL option is set to 0 in multiple bftpd-related configuration files. This can cause DoS attacks when unlimited users are connected...

NETGEAR RAX30 安全漏洞

The NETGEAR RAX30 is a dual-band wireless router from NETGEAR. A security vulnerability exists in NETGEAR RAX30 version V1.0.10.943, which can be exploited by an attacker to potentially cause a denial of service attack...

CVE-2025-44650

In Netgear R7000 V1.3.1.6410.1.36 and EAX80 V1.0.1.701.0.2, the USERLIMITGLOBAL option is set to 0 in the bftpd.conf configuration file. This can cause DoS attacks when unlimited users are connected...

CVE-2025-44658

Netgear RAX30 appears affected (version V1.0.10.94). The issue is a PHP-FPM misconfiguration that fails to limit PHP-FPM to .php extensions, allowing uploaded scripts with alternate extensions to be executed as PHP. Consequences described include remote code execution, information disclosure, or ...