CVE-2025-4114: Netgear JWNR2000v2 check_language_file buffer overflow
First published: Wed Apr 30 2025(Updated: )
A vulnerability classified as critical has been found in Netgear JWNR2000v2 1.0.0.11. Affected is the function check_language_file. The manipulation of the argument host leads to buffer overflow. It is possible to launch the attack remotely. The vendor was contacted early about this disclosure but did not respond in any way.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Netgear JWNR2000v2 firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2025-4114?
The severity of CVE-2025-4114 is classified as critical due to the potential for remote code execution via a buffer overflow.
What software is affected by CVE-2025-4114?
CVE-2025-4114 affects the Netgear JWNR2000v2 with firmware version 1.0.0.11.
How do I fix CVE-2025-4114?
To fix CVE-2025-4114, update the Netgear JWNR2000v2 to the latest firmware version provided by the vendor.
What type of attack can exploit CVE-2025-4114?
CVE-2025-4114 can be exploited by an attacker to execute arbitrary code remotely through a buffer overflow.
How can I determine if my device is vulnerable to CVE-2025-4114?
You can determine if your device is vulnerable to CVE-2025-4114 by checking if it is running the affected firmware version 1.0.0.11 on the Netgear JWNR2000v2.
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/type
- agent/description
- agent/first-publish-date
- agent/references
- agent/title
- agent/guess-ai
- agent/software-canonical-lookup
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/last-modified-date
- agent/author
- agent/severity
- agent/event
- collector/epss-latest
- source/FIRST
- agent/source
- agent/tags
- agent/epss
- vendor/netgear
- canonical/netgear jwnr2000v2 firmware