ByteOS Network

EX6120

Source -

CNA

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

2Vulnerabilities found

CVE-2025-4140

Assigner-VulDB

View Details

Assigner-VulDB

CVSS Score-8.7||HIGH

EPSS-0.26% / 49.65%

7 Day CHG~0.00%

Published-30 Apr, 2025 | 21:31

Updated-12 May, 2025 | 19:40

Netgear EX6120 sub_30394 buffer overflow

A vulnerability, which was classified as critical, has been found in Netgear EX6120 1.0.3.94. Affected by this issue is the function sub_30394. The manipulation of the argument host leads to buffer overflow. The attack may be launched remotely. The vendor was contacted early about this disclosure but did not respond in any way.

Vendor-NETGEAR, Inc.

Product-ex6120 ex6120_firmware EX6120

CWE ID-CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE ID-CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CVE-2025-4139

Assigner-VulDB

View Details

Assigner-VulDB

CVSS Score-8.7||HIGH

EPSS-0.22% / 44.94%

7 Day CHG~0.00%

Published-30 Apr, 2025 | 20:31

Updated-23 Jun, 2025 | 15:13

Netgear EX6120 fwAcosCgiInbound buffer overflow

A vulnerability classified as critical was found in Netgear EX6120 1.0.0.68. Affected by this vulnerability is the function fwAcosCgiInbound. The manipulation of the argument host leads to buffer overflow. The attack can be launched remotely. The vendor was contacted early about this disclosure but did not respond in any way.

Vendor-NETGEAR, Inc.

Product-ex6120 ex6120_firmware EX6120

CWE ID-CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE ID-CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')