CVE-2025-6265

moderate-risk

Published 2025-07-15

A path traversal vulnerability in the file_upload-cgi CGI program of Zyxel NWA50AX PRO firmware version 7.10(ACGE.2) and earlier could allow an authenticated attacker with administrator privileges to access specific directories and delete files, such as the configuration file, on the affected device.

Do I need to act?

0.21% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.2/10 High

NETWORK / LOW complexity

Affected Products (20)

Nwa50Ax Firmware

Nwa50Ax Pro Firmware

Nwa55Axe Firmware

Nwa90Ax Firmware

Nwa90Ax Pro Firmware

Nwa110Ax Firmware

Nwa130Be Firmware

Nwa210Ax Firmware

Nwa220Ax-6E Firmware

Nwa1123Ac Pro Firmware

Wac500H Firmware

Wac5302D-Sv2 Firmware

Wac6103D-I Firmware

Wax300H Firmware

Wax510D Firmware

Wax610D Firmware

Wax620D-6E Firmware

Wax630S Firmware

Wax640S-6E Firmware

Wax650S Firmware

Affected Vendors

Zyxel

References (1)

Vendor Advisory https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advis...

/ 100

moderate-risk

Severity 26/34 · High

Exploitability 1/34 · Minimal

Exposure 21/34 · High