The official site for Saudi CERT
NETGEAR Alert
3194
Warning Date
Severity Level
Warning Number
Target Sector
20 March, 2022
● Medium
2022-4538
All
NETGEAR has released security updates to address several vulnerabilities in the following products:
- Orbi WiFi Systems
- CBR40 fixed in firmware version 2.5.0.28
- Routers
- R6400v2 fixed in firmware version 1.0.4.126
- R6700v3 fixed in firmware version 1.0.4.126
- R6900P fixed in firmware version 1.3.3.148
- R7000 fixed in firmware version 1.0.11.134
- R7000P fixed in firmware version 1.0.11.134
- RS400 fixed in firmware version 1.5.1.86
- R6400 fixed in firmware version 1.0.1.78
- WNDR3400v3 fixed in firmware version 1.0.1.44
- WNR3500Lv2 fixed in firmware version 1.2.0.72
- XR300 fixed in firmware version 1.0.3.72
- RAX15 fixed in firmware version 1.0.10.110
- RAX20 fixed in firmware version 1.0.10.110
- RAX35v2 fixed in firmware version 1.0.10.110
- RAX38v2 fixed in firmware version 1.0.10.110
- RAX40v2 fixed in firmware version 1.0.10.110
- RAX42 fixed in firmware version 1.0.10.110
- RAX43 fixed in firmware version 1.0.10.110
- RAX45 fixed in firmware version 1.0.10.110
- RAX48 fixed in firmware version 1.0.10.110
- RAX50 fixed in firmware version 1.0.10.110
- RAX50S fixed in firmware version 1.0.10.110
- Fixed Wireless
- R7100LG fixed in firmware version 1.0.0.76
- LAX20 fixed in firmware version 1.1.6.34
- Wireless
- DC112A fixed in firmware version 1.0.0.64
- DSL Modem Routers
- D6220 fixed in firmware version 1.0.0.80
- D6400 fixed in firmware version 1.0.0.114
- D7000v2 fixed in firmware version 1.0.0.80
- Nighthawk Mesh WiFi Systems
- MR80 fixed in firmware version 1.1.6.14
- MS80 fixed in firmware version 1.1.6.14
- Cable Modem Routers
- CAX80 fixed in firmware version 2.1.3.7
Attacker could exploit these vulnerabilities by doing the following:
- Execute arbitrary code
The CERT team encourages users to review NETGEAR security advisory and apply the necessary updates:
- https://kb.netgear.com/000064724/Security-Advisory-for-Security-Misconfiguration-on-Some-Routers-and-Orbi-WiFi-Systems-PSV-2021-0330?article=000064724
- https://kb.netgear.com/000064719/Security-Advisory-for-Multiple-Vulnerabilities-on-Multiple-Products-PSV-2021-0321?article=000064719
- https://kb.netgear.com/000064720/Security-Advisory-for-Pre-Authentication-Buffer-Overflow-on-Multiple-Products-PSV-2021-0323?article=000064720
- https://kb.netgear.com/000064721/Security-Advisory-for-Multiple-Vulnerabilities-on-Multiple-Products-PSV-2021-0324?article=000064721
- https://kb.netgear.com/000064722/Security-Advisory-for-Sensitive-Information-Disclosure-on-Some-Routers-and-Fixed-Wireless-Products-PSV-2021-0325?article=000064722
- https://kb.netgear.com/000064723/Security-Advisory-for-Multiple-Vulnerabilities-on-Multiple-Products-PSV-2021-0327?article=000064723
Rate the content
Share the page
