216.73.216.197

CVE-2025-12942

· Published 11/11/2025 17:15 · Modified 08/12/2025 14:26

Labels: CVE-2025-12942 2025-11-11CVE-2025-12942CWE-20a2826606-91e7-4eb6-899e-8484bd4575d5

Essential information

Published
11/11/2025 17:15
Modified
08/12/2025 14:26
Author
Creator
CVSS
4.8 MEDIUM (v3) 4.8 MEDIUM (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

Improper Input Validation vulnerability in NETGEAR R6260 and NETGEAR R6850 allows unauthenticated attackers connected to LAN with ability to perform MiTM attacks and control over DNS Server to perform command execution.This issue affects R6260: through 1.1.0.86; R6850: through 1.1.0.86.

NVD status

Status
Analyzed — CVE has had analysis completed and all data associations made.
Source
a2826606-91e7-4eb6-899e-8484bd4575d5
NVD
View on NVD

Affected products (CPE)

ProductCPE
netgear / r6260 firmware cpe:2.3:o:netgear:r6260_firmware:*:*:*:*:*:*:*:*
netgear / r6260 cpe:2.3:h:netgear:r6260:-:*:*:*:*:*:*:*
netgear / r6850 firmware cpe:2.3:o:netgear:r6850_firmware:*:*:*:*:*:*:*:*
netgear / r6850 cpe:2.3:h:netgear:r6850:-:*:*:*:*:*:*:*

References