CVE-2025-12942

UNKNOWN 0.0

Improper input validation in NETGEAR R6260 and R6850

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Improper Input Validation vulnerability in NETGEAR R6260 and NETGEAR R6850 allows unauthenticated attackers connected to LAN with ability to perform MiTM attacks and control over DNS Server to perform command execution.This issue affects R6260: through 1.1.0.86; R6850: through 1.1.0.86.

CWE	CWE-20
Vendor	netgear
Product	r6260
Published	Nov 11, 2025
Last Updated	Feb 26, 2026

Stay Ahead of the Next One

Get instant alerts for netgear r6260

Be the first to know when new unknown vulnerabilities affecting netgear r6260 are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

NETGEAR / R6260

0 ≤ 1.1.0.86

NETGEAR / R6850

0 ≤ 1.1.0.86

References

NVD ↗ CVE.org ↗ EPSS Data ↗

netgear.com: https://www.netgear.com/support/product/r6850 netgear.com: https://www.netgear.com/support/product/r6260 kb.netgear.com: https://kb.netgear.com/000070355/NETGEAR-Security-Advisories-November-2025

Credits

dcmtruman