{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-07T01:13:45.594","vulnerabilities":[{"cve":{"id":"CVE-2025-30485","sourceIdentifier":"vultures@jpcert.or.jp","published":"2025-04-03T07:15:41.110","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"UNIX symbolic link (Symlink) following issue exists in FutureNet NXR series, VXR series and WXR series routers. Attaching to the affected product an external storage containing malicious symbolic link files, a logged-in administrative user may obtain and/or destroy internal files."},{"lang":"es","value":"El siguiente problema de enlace simbólico UNIX (Symlink) existe en los routers FutureNet de las series NXR, VXR y WXR. Al conectar al producto afectado un dispositivo de almacenamiento externo que contenga archivos de enlace simbólico maliciosos, un usuario administrador con sesión iniciada podría obtener o destruir archivos internos."}],"metrics":{"cvssMetricV30":[{"source":"vultures@jpcert.or.jp","type":"Secondary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","baseScore":6.2,"baseSeverity":"MEDIUM","attackVector":"PHYSICAL","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":0.3,"impactScore":5.9}]},"weaknesses":[{"source":"vultures@jpcert.or.jp","type":"Secondary","description":[{"lang":"en","value":"CWE-61"}]}],"references":[{"url":"https://jvn.jp/en/vu/JVNVU92821536/","source":"vultures@jpcert.or.jp"},{"url":"https://www.centurysys.co.jp/backnumber/common/jvnvu92821536.html","source":"vultures@jpcert.or.jp"}]}}]}