Unrated severityNVD Advisory· Published Jul 21, 2025· Updated Aug 7, 2025

CVE-2025-44650

Description

In Netgear R7000 V1.3.1.64_10.1.36 and EAX80 V1.0.1.70_1.0.2, the USERLIMIT_GLOBAL option is set to 0 in the bftpd.conf configuration file. This can cause DoS attacks when unlimited users are connected.

Affected products

Netgear/R7000description
Netgear/EAX80llm-create
Range: = V1.0.1.70_1.0.2
Netgear/R7000llm-fuzzy
Range: = V1.3.1.64_10.1.36

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

gist.github.com/TPCchecker/d13d15dfa8965ba88a9437718f77f67dmitre
www.netgear.com/about/security/mitre
www.notion.so/CVE-2025-44650-24754a1113e780dca89dca218b90b1d9mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000