CVE-2025-25527

Name of the Vulnerable Software and Affected Versions Ruijie RG-NBR2600S Gateway version 10.3(4b12)

Description The issue is related to a buffer overflow vulnerability due to the lack of length verification in the configuration of source address NAT rules. This can cause the remote target device to crash or execute arbitrary commands.

Recommendations For Ruijie RG-NBR2600S Gateway version 10.3(4b12), consider restricting the configuration of source address NAT rules to minimize the risk of exploitation until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.