CVE-2025-4117Improper Restriction of Operations within the Bounds of a Memory Buffer in Netgear Jwnr2000v2

CWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-120Classic Buffer Overflow3 documents3 sources
Severity
5.1MEDIUMNVD
EPSS
0.4%
top 42.44%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Netgear Jwnr2000v2Netgear Jwnr2000 Firmware
Timeline
PublishedApr 30

Description

A vulnerability, which was classified as critical, was found in Netgear JWNR2000v2 1.0.0.11. This affects the function sub_41A914. The manipulation of the argument host leads to buffer overflow. The vendor was contacted early about this disclosure but did not respond in any way.

CVSS vector

CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N

Affected Packages2 packages

CVEListV5netgear/jwnr2000v21.0.0.11

🔴Vulnerability Details

2
CVEList
Netgear JWNR2000v2 sub_41A914 buffer overflow2025-04-30
GHSA
GHSA-v74x-4c9w-5ccp: A vulnerability, which was classified as critical, was found in Netgear JWNR2000v2 12025-04-30
CVE-2025-4117 — Netgear Jwnr2000v2 vulnerability | cvebase