VYPR
← All advisories
Unrated severityNVD Advisory· Published Jun 10, 2025· Updated Jun 10, 2025

Netgear EX3700 mtd sub_41619C stack-based overflow

CVE-2025-5934

Description

A vulnerability was found in Netgear EX3700 up to 1.0.0.88. It has been classified as critical. Affected is the function sub_41619C of the file /mtd. The manipulation leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 1.0.0.98 is able to address this issue. It is recommended to upgrade the affected component. This vulnerability only affects products that are no longer supported by the maintainer.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Netgear EX3700 devices up to firmware 1.0.0.88 are vulnerable to a remote stack-based buffer overflow in the /mtd handler, allowing potential code execution.

Vulnerability

A stack-based buffer overflow vulnerability exists in the function sub_41619C within the /mtd file of Netgear EX3700 routers. The flaw occurs at offset 0x0041684C where strcat is called without proper bounds checking, allowing a user-supplied GET request to overflow a stack buffer. All firmware versions before 1.0.0.88 are affected [1][2].

Exploitation

An attacker can exploit this vulnerability by sending a crafted HTTP GET request to the device's web server (port 80). The request must include a path starting with /mtd followed by data exceeding the 100-byte buffer v22, causing a stack buffer overflow. The proof-of-concept demonstrates a simple Python script that sends such a request, triggering the overflow [1][2]. No authentication is required; the attack can be performed remotely over the network.

Impact

Successful exploitation leads to a stack-based buffer overflow, which can corrupt memory and potentially allow arbitrary code execution on the device. Given the device's elevated privileges, an attacker could gain full control of the router, leading to information disclosure, denial of service, or further network compromise. The vulnerability is publicly disclosed and exploitation is considered likely [1].

Mitigation

Netgear has released firmware version 1.0.0.98 to address this issue [1]. However, the EX3700 is an end-of-life (EOL) product and is no longer supported by the vendor. Users are strongly advised to upgrade to a supported device as no official workarounds are available. The vulnerability is tracked as CVE-2025-5934 and is publicly known.

References
  1. vul-finds/vul-find-ex3700-netgear at main · xiaobor123/vul-finds
  2. vul-finds/vul-find-ex3700-netgear at main · xiaobor123/vul-finds

AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

2
  • Netgear/EX3700llm-create2 versions
    <=1.0.0.88+ 1 more
    • (no CPE)range: <=1.0.0.88
    • (no CPE)range: 1.0.0.0

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

6

News mentions

0

No linked articles in our index yet.