CVE-2025-30485

Name of the Vulnerable Software and Affected Versions FutureNet NXR series, VXR series and WXR series routers (affected versions not specified)

Description The issue exists due to improper handling of symbolic link files. An attacker can exploit this by attaching an external storage containing malicious symbolic link files to the affected product. If successful, a logged-in administrative user may obtain and/or destroy internal files.

Recommendations For FutureNet NXR series, VXR series and WXR series routers, consider restricting access to external storage devices to minimize the risk of exploitation. As a temporary workaround, consider disabling the ability to attach external storage devices to the routers until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.