CVE-2025-5934

Summary

A vulnerability was found in Netgear EX3700 up to 1.0.0.88. It has been classified as critical. Affected is the function sub_41619C of the file /mtd. The manipulation leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 1.0.0.98 is able to address this issue. It is recommended to upgrade the affected component. This vulnerability only affects products that are no longer supported by the maintainer.

Affected Software

VendorProductVersion RangeStatus
NetgearEX37001.0.0.0affected
NetgearEX37001.0.0.1affected
NetgearEX37001.0.0.2affected
NetgearEX37001.0.0.3affected
NetgearEX37001.0.0.4affected
NetgearEX37001.0.0.5affected
NetgearEX37001.0.0.6affected
NetgearEX37001.0.0.7affected
NetgearEX37001.0.0.8affected
NetgearEX37001.0.0.9affected
NetgearEX37001.0.0.10affected
NetgearEX37001.0.0.11affected
NetgearEX37001.0.0.12affected
NetgearEX37001.0.0.13affected
NetgearEX37001.0.0.14affected
NetgearEX37001.0.0.15affected
NetgearEX37001.0.0.16affected
NetgearEX37001.0.0.17affected
NetgearEX37001.0.0.18affected
NetgearEX37001.0.0.19affected
NetgearEX37001.0.0.20affected
NetgearEX37001.0.0.21affected
NetgearEX37001.0.0.22affected
NetgearEX37001.0.0.23affected
NetgearEX37001.0.0.24affected
NetgearEX37001.0.0.25affected
NetgearEX37001.0.0.26affected
NetgearEX37001.0.0.27affected
NetgearEX37001.0.0.28affected
NetgearEX37001.0.0.29affected
NetgearEX37001.0.0.30affected
NetgearEX37001.0.0.31affected
NetgearEX37001.0.0.32affected
NetgearEX37001.0.0.33affected
NetgearEX37001.0.0.34affected
NetgearEX37001.0.0.35affected
NetgearEX37001.0.0.36affected
NetgearEX37001.0.0.37affected
NetgearEX37001.0.0.38affected
NetgearEX37001.0.0.39affected
NetgearEX37001.0.0.40affected
NetgearEX37001.0.0.41affected
NetgearEX37001.0.0.42affected
NetgearEX37001.0.0.43affected
NetgearEX37001.0.0.44affected
NetgearEX37001.0.0.45affected
NetgearEX37001.0.0.46affected
NetgearEX37001.0.0.47affected
NetgearEX37001.0.0.48affected
NetgearEX37001.0.0.49affected
NetgearEX37001.0.0.50affected
NetgearEX37001.0.0.51affected
NetgearEX37001.0.0.52affected
NetgearEX37001.0.0.53affected
NetgearEX37001.0.0.54affected
NetgearEX37001.0.0.55affected
NetgearEX37001.0.0.56affected
NetgearEX37001.0.0.57affected
NetgearEX37001.0.0.58affected
NetgearEX37001.0.0.59affected
NetgearEX37001.0.0.60affected
NetgearEX37001.0.0.61affected
NetgearEX37001.0.0.62affected
NetgearEX37001.0.0.63affected
NetgearEX37001.0.0.64affected
NetgearEX37001.0.0.65affected
NetgearEX37001.0.0.66affected
NetgearEX37001.0.0.67affected
NetgearEX37001.0.0.68affected
NetgearEX37001.0.0.69affected
NetgearEX37001.0.0.70affected
NetgearEX37001.0.0.71affected
NetgearEX37001.0.0.72affected
NetgearEX37001.0.0.73affected
NetgearEX37001.0.0.74affected
NetgearEX37001.0.0.75affected
NetgearEX37001.0.0.76affected
NetgearEX37001.0.0.77affected
NetgearEX37001.0.0.78affected
NetgearEX37001.0.0.79affected
NetgearEX37001.0.0.80affected
NetgearEX37001.0.0.81affected
NetgearEX37001.0.0.82affected
NetgearEX37001.0.0.83affected
NetgearEX37001.0.0.84affected
NetgearEX37001.0.0.85affected
NetgearEX37001.0.0.86affected
NetgearEX37001.0.0.87affected
NetgearEX37001.0.0.88affected

Weaknesses

  • CWE-121: Stack-based Buffer Overflow
  • CWE-119: Memory Corruption

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: no
    • Technical Impact: total

Additional References

References