CVE-2025-4135 – Netgear WG302v2 Command Injection Vulnerability

April 30, 2025

CVE ID : CVE-2025-4135

Published : April 30, 2025, 6:15 p.m. | 53 minutes ago

Description : A vulnerability was found in Netgear WG302v2 up to 5.2.9 and classified as critical. Affected by this issue is the function ui_get_input_value. The manipulation of the argument host leads to command injection. The attack may be launched remotely. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-46619 – Couchbase Server File Access Vulnerability

Next Article CVE-2025-39413 – David Gwyer Simple Sitemap Missing Authorization Vulnerability

How To Prevent WordPress SQL Injection Attacks

This week in AI dev tools: Apple’s Foundations Model framework, Mistral’s first reasoning model, and more (June 13, 2025)

Open Talent platforms emerging to match skilled workers to needs, study finds

Java never goes out of style: Celebrating 30 years of the language

The 5 gadgets that got me through marathons and obstacle races (and why they work)

This beastly 500W charger replaced every other charger I had – with six ports to boot

Mac Mini won’t power on? Apple will fix it for you – for free

Why I’m switching to VS Code. Hint: It’s all about AI tool integration

From Concept to Code: Final Year PHP Projects with Reports for Smart Submissions

From Concept to Code: Final Year PHP Projects with Reports for Smart Submissions

Building Construction suppliers in India

Neutralinojs v6.1 released

Microsoft Edge’s Quiet Shift to AVIF: Why It Matters

Microsoft Edge’s Quiet Shift to AVIF: Why It Matters

Windows 11 test builds are accidentally playing the Windows Vista startup sound

Leaked: ROG Xbox Ally and Xbox Ally X pre-orders set for August, launch in October

CVE-2025-4135 – Netgear WG302v2 Command Injection Vulnerability

Chaos RAT Malware Targets Windows and Linux via Fake Network Tool Downloads

Critical Cisco ISE Auth Bypass Flaw Impacts Cloud Deployments on AWS, Azure, and OCI

CVE-2025-48880 – FreeScout Race Condition Vulnerability

Google AI Releases Standalone NotebookLM Mobile App with Offline Audio and Seamless Source Integration

CVE-2025-32444 (CVSS 10): Critical RCE Flaw in vLLM’s Mooncake Integration Exposes AI Infrastructure

HellCat ransomware: what you need to know

Building AI-Powered Applications Using the Plan → Files → Code Workflow in TinyDev

Best Car Rental Apps You Must Know for India, US & UAE

CVE-2025-5184 – Summer Pearl Group Vacation Rental Management Platform HTTP Response Header Handler Information Disclosure

LockBit ransomware gang breached, secrets exposed

CVE-2025-4135 – Netgear WG302v2 Command Injection Vulnerability

Related Posts