CVE-2025-52081 Information

Description

In Netgear XR300 V1.0.3.38_10.3.30 a stack-based buffer overflow vulnerability exists in the HTTPD service through the usb_device.cgi endpoint. The vulnerability occurs when processing POST requests containing the usb_folder parameter.

Reference

https://github.com/lafdrew/IOT/blob/main/Netgear%20XR300/usb_folder%20of%20usb_device.cgi/buffer%20overflow%20in%20usb_folder%20of%20usb_device.cgi.md

Related CNNVD

CNNVD-202507-2053 (Published: 2025-07-15)