Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8
CVE-2025-44658
- EPSS 0.41%
- Published 21.07.2025 00:00:00
- Last modified 07.08.2025 17:57:40
In Netgear RAX30 V1.0.10.94, a PHP-FPM misconfiguration vulnerability is caused by not following the specification to only limit FPM to .php extensions. An attacker may exploit this by uploading malicious scripts disguised with alternate extensions a...
7.5
CVE-2025-44652
- EPSS 0.06%
- Published 21.07.2025 00:00:00
- Last modified 07.08.2025 14:15:43
In Netgear RAX30 V1.0.10.94_3, the USERLIMIT_GLOBAL option is set to 0 in multiple bftpd-related configuration files. This can cause DoS attacks when unlimited users are connected.
8.8
CVE-2023-48725
- EPSS 30.52%
- Published 07.03.2024 15:15:07
- Last modified 11.03.2025 16:56:47
A stack-based buffer overflow vulnerability exists in the JSON Parsing getblockschedule() functionality of Netgear RAX30 1.0.11.96 and 1.0.7.78. A specially crafted HTTP request can lead to code execution. An attacker can make an authenticated HTTP r...
1