CNNVD-202512-4143 Information

CNNVD ID

CNNVD-202512-4143

Related CVE

CVE-2025-45493

• CNNVD Published: 2025-12-23

Description (Chinese)

NETGEAR EX8000是美国网件（NETGEAR）公司的一款无线网络信号扩展器。 NETGEAR EX8000 V1.0.0.126版本存在安全漏洞，该漏洞源于action_bandwidth函数中的iface参数存在命令注入。

Description (English)

NETGEAR EX8000 is a wireless network signal extension of Netware (NETGEAR) in the United States. The NETGEAR EX8000 V1.0.0.126 version contains a security loophole that originates from the command injection of the face parameter in the action bandwidth function.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

网件

Published

2025-12-23

Last Modified

2026-02-24

References

https://github.com/JZP018/vuln03/blob/main/netgear/EX8000/cve-netgear_EX8000_CI_action_bandwidth.pdf https://github.com/JZP018/vuln03/blob/main/netgear/EX8000/netgear_EX8000_CI_action_bandwidth.mp4 https://access.redhat.com/security/cve/cve-2025-45493

Patch

https://www.netgear.com/support/product/ex8000