CVE-2025-4141 Netgear EX6200 sub_3C03C buffer overflow

A vulnerability, which was classified as critical, was found in Netgear EX6200 1.0.3.94. This affects the function sub3C03C. The manipulation of the argument host leads to buffer overflow. It is possible to initiate the attack remotely. The vendor was contacted early about this disclosure but did...

CVE-2025-4141 Netgear EX6200 sub_3C03C buffer overflow

A vulnerability, which was classified as critical, was found in Netgear EX6200 1.0.3.94. This affects the function sub3C03C. The manipulation of the argument host leads to buffer overflow. It is possible to initiate the attack remotely. The vendor was contacted early about this disclosure but did...

CVE-2025-4140

CVE-2025-4140 affects Netgear EX6120 (firmware 1.0.3.94). The issue is a buffer overflow in the sub_30394 function caused by improper validation of the host argument, enabling remote exploitation to execute arbitrary code or cause a denial of service. Multiple sources corroborate the vulnerabilit...

CVE-2025-4140 Netgear EX6120 sub_30394 buffer overflow

A vulnerability, which was classified as critical, has been found in Netgear EX6120 1.0.3.94. Affected by this issue is the function sub30394. The manipulation of the argument host leads to buffer overflow. The attack may be launched remotely. The vendor was contacted early about this disclosure...

CVE-2025-4140 Netgear EX6120 sub_30394 buffer overflow

A vulnerability, which was classified as critical, has been found in Netgear EX6120 1.0.3.94. Affected by this issue is the function sub30394. The manipulation of the argument host leads to buffer overflow. The attack may be launched remotely. The vendor was contacted early about this disclosure...

CVE-2025-4139

A vulnerability classified as critical was found in Netgear EX6120 1.0.0.68. Affected by this vulnerability is the function fwAcosCgiInbound. The manipulation of the argument host leads to buffer overflow. The attack can be launched remotely. The vendor was contacted early about this disclosure b...

CVE-2025-4139

A vulnerability classified as critical was found in Netgear EX6120 1.0.0.68. Affected by this vulnerability is the function fwAcosCgiInbound. The manipulation of the argument host leads to buffer overflow. The attack can be launched remotely. The vendor was contacted early about this disclosure b...

CVE-2025-4139

CVE-2025-4139 affects Netgear EX6120 1.0.0.68. The fwAcosCgiInbound function improperly validates the host argument, causing a buffer overflow that can be exploited remotely (arbitrary code execution/DoS). No patch/version details are provided in the supplied documents. Mitigation guidance from P...

CVE-2025-4139 Netgear EX6120 fwAcosCgiInbound buffer overflow

A vulnerability classified as critical was found in Netgear EX6120 1.0.0.68. Affected by this vulnerability is the function fwAcosCgiInbound. The manipulation of the argument host leads to buffer overflow. The attack can be launched remotely. The vendor was contacted early about this disclosure b...

CVE-2025-4139 Netgear EX6120 fwAcosCgiInbound buffer overflow

A vulnerability classified as critical was found in Netgear EX6120 1.0.0.68. Affected by this vulnerability is the function fwAcosCgiInbound. The manipulation of the argument host leads to buffer overflow. The attack can be launched remotely. The vendor was contacted early about this disclosure b...

CVE-2025-4135

A vulnerability was found in Netgear WG302v2 up to 5.2.9 and classified as critical. Affected by this issue is the function uigetinputvalue. The manipulation of the argument host leads to command injection. The attack may be launched remotely. The vendor was contacted early about this disclosure...

CVE-2025-4135

A vulnerability was found in Netgear WG302v2 up to 5.2.9 and classified as critical. Affected by this issue is the function uigetinputvalue. The manipulation of the argument host leads to command injection. The attack may be launched remotely. The vendor was contacted early about this disclosure...

CVE-2025-4135

Netgear WG302v2 (up to version 5.2.9) is affected by a command-injection vulnerability in the ui_get_input_value function, caused by improper handling of the host parameter. This can be exploited remotely and does not require user interaction. Several sources (NVD, Red Hat, CNVD, CVE list mirrors...

CVE-2025-4135 Netgear WG302v2 ui_get_input_value command injection

A vulnerability was found in Netgear WG302v2 up to 5.2.9 and classified as critical. Affected by this issue is the function uigetinputvalue. The manipulation of the argument host leads to command injection. The attack may be launched remotely. The vendor was contacted early about this disclosure...

CVE-2025-4135 Netgear WG302v2 ui_get_input_value command injection

A vulnerability was found in Netgear WG302v2 up to 5.2.9 and classified as critical. Affected by this issue is the function uigetinputvalue. The manipulation of the argument host leads to command injection. The attack may be launched remotely. The vendor was contacted early about this disclosure...

CVE-2025-4122

A vulnerability was found in Netgear JWNR2000v2 1.0.0.11. It has been rated as critical. Affected by this issue is the function sub435E04. The manipulation of the argument host leads to command injection. The attack may be launched remotely. The vendor was contacted early about this disclosure bu...

CVE-2025-4122

A vulnerability was found in Netgear JWNR2000v2 1.0.0.11. It has been rated as critical. Affected by this issue is the function sub435E04. The manipulation of the argument host leads to command injection. The attack may be launched remotely. The vendor was contacted early about this disclosure bu...

CVE-2025-4122 Netgear JWNR2000v2 sub_435E04 command injection

A vulnerability was found in Netgear JWNR2000v2 1.0.0.11. It has been rated as critical. Affected by this issue is the function sub435E04. The manipulation of the argument host leads to command injection. The attack may be launched remotely. The vendor was contacted early about this disclosure bu...

CVE-2025-4122

Netgear JWNR2000v2 is affected by CVE-2025-4122 due to a vulnerability in the function sub_435E04 where manipulating the host argument leads to command injection. Affected version: 1.0.0.11. Exploitation may be remote. Multiple sources corroborate the issue; no official fix details are provided i...

CVE-2025-4122 Netgear JWNR2000v2 sub_435E04 command injection

A vulnerability was found in Netgear JWNR2000v2 1.0.0.11. It has been rated as critical. Affected by this issue is the function sub435E04. The manipulation of the argument host leads to command injection. The attack may be launched remotely. The vendor was contacted early about this disclosure bu...