CVE-2025-30485

UNIX symbolic link (Symlink) following issue exists in FutureNet NXR series, VXR series and WXR series routers. Attaching to the affected product an external storage containing malicious symbolic link files, a logged-in administrative user may obtain and/or destroy internal files.

CVSS

No CVSS.

References

Link	Resource
https://jvn.jp/en/vu/JVNVU92821536/
https://www.centurysys.co.jp/backnumber/common/jvnvu92821536.html

Configurations

No configuration.

History

03 Apr 2025, 07:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-04-03 07:15

Updated : 2025-04-03 07:15

NVD link : CVE-2025-30485

Mitre link : CVE-2025-30485

JSON object : View

Products Affected

No product.

CWE

CWE-61

UNIX Symbolic Link (Symlink) Following

JSON object

Attach tags to CVE-2025-30485

Attach tags to `CVE-2025-30485`