CVE-2025-4148: Netgear EX6200 sub_503FC buffer overflow
First published: Thu May 01 2025(Updated: )
A vulnerability was found in Netgear EX6200 1.0.3.94 and classified as critical. Affected by this issue is the function sub_503FC. The manipulation of the argument host leads to buffer overflow. The attack may be launched remotely. The vendor was contacted early about this disclosure but did not respond in any way.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| NETGEAR EX6200v1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2025-4148?
CVE-2025-4148 is classified as a critical vulnerability.
How does CVE-2025-4148 affect the Netgear EX6200?
CVE-2025-4148 affects the function sub_503FC, leading to a potential buffer overflow.
Can CVE-2025-4148 be exploited remotely?
Yes, CVE-2025-4148 can be exploited remotely by manipulating the argument host.
What versions of Netgear EX6200 are vulnerable to CVE-2025-4148?
The vulnerability is present in Netgear EX6200 version 1.0.3.94.
What mitigation strategies exist for CVE-2025-4148?
To mitigate CVE-2025-4148, users should update their Netgear EX6200 to the latest firmware version that addresses this vulnerability.
- collector/mitre-cve
- source/MITRE
- agent/title
- agent/weakness
- agent/references
- agent/description
- agent/first-publish-date
- agent/type
- agent/guess-ai
- agent/software-canonical-lookup
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/last-modified-date
- agent/severity
- agent/author
- agent/event
- collector/epss-latest
- source/FIRST
- agent/source
- agent/tags
- agent/epss
- vendor/netgear
- canonical/netgear ex6200v1