CVE-2025-12946

MEDIUM EPSS 17.1%
Published Dec 9, 20256mo ago · Modified Jun 17, 20261w ago
4.4 CVSS 4.0
Medium
Find Similar
Published Dec 9, 2025 6mo ago
Last Modified Jun 17, 2026 1w ago

Description

A vulnerability in the speedtest feature of affected NETGEAR Nighthawk routers, caused by improper input validation, can allow attackers on the router's WAN side, using attacker-in-the-middle techniques (MiTM) to manipulate DNS responses and execute commands when speedtests are run. This issue affects RS700: through 1.0.7.82; RAX54Sv2 : before V1.1.6.36; RAX41v2: before V1.1.6.36; RAX50: before V1.2.14.114; RAXE500: before V1.2.14.114; RAX41: before V1.0.17.142; RAX43: before V1.0.17.142; RAX35v2: before V1.0.17.142; RAXE450: before V1.2.14.114; RAX43v2: before V1.1.6.36; RAX42: before V1.0.17.142; RAX45: before V1.0.17.142; RAX50v2: before V1.1.6.36; MR90: before V1.0.2.46; MS90: before V1.0.2.46; RAX42v2: before V1.1.6.36; RAX49S: before V1.1.6.36.

CVSS Details

Base Score
4.4
Exploitability
Impact
Vector string
CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:N/R:A/V:D/RE:M/U:Amber
Attack Vector Adjacent
Attack Complexity High
Privileges Required None
User Interaction A
Scope N

Threat Intelligence

EPSS Exploit Probability
17.1% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-20 Improper Input Validation Validation

Affected Products 36

VendorProductVersionRange
netgearrs700_firmware* <1.0.9.6
netgearrs700*any
netgearrax54sv2_firmware* <1.1.6.36
netgearrax54sv2*any
netgearrax45v2_firmware* <1.1.6.36
netgearrax45v2*any
netgearrax41v2_firmware* <1.1.6.36
netgearrax41v2*any
netgearrax50_firmware* <1.2.14.114
netgearrax50*any
netgearraxe500_firmware* <1.2.14.114
netgearraxe500*any
netgearrax41_firmware* <1.0.17.142
netgearrax41*any
netgearrax43_firmware* <1.0.17.142
netgearrax43*any
netgearrax35v2_firmware* <1.0.17.142
netgearrax35v2*any
netgearraxe450_firmware* <1.0.17.142
netgearraxe450*any
netgearrax43v2_firmware* <1.1.6.36
netgearrax43v2*any
netgearrax42_firmware* <1.0.17.142
netgearrax42*any
netgearrax45_firmware* <1.0.17.142
netgearrax45*any
netgearrax50v2_firmware* <1.1.6.36
netgearrax50v2*any
netgearmr90_firmware* <1.0.2.46
netgearmr90*any
netgearms90_firmware* <1.0.2.46
netgearms90*any
netgearrax42v2_firmware* <1.1.6.36
netgearrax42v2*any
netgearrax49s_firmware* <1.1.6.36
netgearrax49s*any

References 18

  • kb.netgear.com https://kb.netgear.com/000070416/December-2025-NETGEAR-Security-Advisory
    PatchVendor Advisory
  • netgear.com https://www.netgear.com/support/product/RAX50
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/mr90
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/ms90
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rax35v2
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rax41
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rax41v2
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rax42
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rax42v2
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rax43
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rax43v2
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rax45
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rax49s
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rax50v2
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rax54sv2
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/raxe450
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/raxe500
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rs700
    PatchProduct

Remediation

  • kb.netgear.com https://kb.netgear.com/000070416/December-2025-NETGEAR-Security-Advisory
    PatchVendor Advisory
  • netgear.com https://www.netgear.com/support/product/RAX50
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/mr90
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/ms90
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rax35v2
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rax41
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rax41v2
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rax42
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rax42v2
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rax43
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rax43v2
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rax45
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rax49s
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rax50v2
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rax54sv2
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/raxe450
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/raxe500
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rs700
    PatchProduct