CVE-2025-30485

Medium CVSS: 6.2

UNIX symbolic link (Symlink) following issue exists in FutureNet NXR series, VXR series and WXR series routers. Attaching to the affected product an external storage containing malicious symbolic link files, a logged-in administrative user may obtain and/or destroy internal files.

Vendor

Product

CWE

CWE-61

Yayın Tarihi

2025-04-03 07:15:41

Güncelleme

2025-04-07 14:18:34

Source Identifier

vultures@jpcert.or.jp

KEV Date Added

Kategoriler

CWE-61 MEDIUM 2025

Referanslar

https://jvn.jp/en/vu/JVNVU92821536/ https://www.centurysys.co.jp/backnumber/common/jvnvu92821536.html