CVE-2025-4142: Netgear EX6200 sub_3C8EC buffer overflow
First published: Wed Apr 30 2025(Updated: )
A vulnerability has been found in Netgear EX6200 1.0.3.94 and classified as critical. This vulnerability affects the function sub_3C8EC. The manipulation of the argument host leads to buffer overflow. The attack can be initiated remotely. The vendor was contacted early about this disclosure but did not respond in any way.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| NETGEAR EX6200v1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2025-4142?
CVE-2025-4142 is classified as critical due to its potential for remote exploitation and buffer overflow.
How do I fix CVE-2025-4142?
To fix CVE-2025-4142, update your Netgear EX6200 firmware to the latest version provided by the vendor.
What impacts does CVE-2025-4142 have on my device?
CVE-2025-4142 can lead to unauthorized access and control over the device due to remote execution of malicious code.
Is there a workaround for CVE-2025-4142?
Currently, the recommended workaround for CVE-2025-4142 is to disable remote management features if not required.
Who is affected by CVE-2025-4142?
CVE-2025-4142 affects users of the Netgear EX6200 router running firmware version 1.0.3.94.
- collector/mitre-cve
- source/MITRE
- agent/title
- agent/references
- agent/weakness
- agent/first-publish-date
- agent/type
- agent/description
- agent/guess-ai
- agent/software-canonical-lookup
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/severity
- agent/last-modified-date
- agent/author
- agent/source
- agent/tags
- agent/event
- vendor/netgear
- canonical/netgear ex6200v1