CVE-2025-12945

Low CVSS: 1.1

A vulnerability in NETGEAR Nighthawk R7000P routers lets an authenticated admin execute OS command injections due to improper input validation.

This issue affects R7000P: through 1.3.3.154.

Vendor

Netgear

Product

R7000p Firmware

CWE

CWE-20

Yayın Tarihi

2025-12-09 17:15:48

Güncelleme

2026-01-16 21:07:14

Source Identifier

a2826606-91e7-4eb6-899e-8484bd4575d5

KEV Date Added

Kategoriler

CWE-20 R7000p Firmware LOW Netgear 2025

Referanslar

https://kb.netgear.com/000070416/December-2025-NETGEAR-Security-Advisory https://www.netgear.com/support/product/r7000p

Benzer Kayıtlar

High

CVE-2022-40620

FunJSQ, a third-party module integrated on some NETGEAR routers and Orbi WiFi Systems, does not properly validate TLS ce…

High

CVE-2022-40619

FunJSQ, a third-party module integrated on some NETGEAR routers and Orbi WiFi Systems, exposes an HTTP server over the L…

Medium

CVE-2026-0408

A path traversal vulnerability in NETGEAR WiFi range extenders allows an attacker with LAN authentication to access the…

Low

CVE-2026-0403

An insufficient input validation vulnerability in NETGEAR Orbi routers allows attackers connected to the router's LAN t…

Medium

CVE-2026-0404

An insufficient input validation vulnerability in NETGEAR Orbi devices' DHCPv6 functionality allows network adjacent at…

Medium

CVE-2026-0405

An authentication bypass vulnerability in NETGEAR Orbi devices allows users connected to the local network to access th…