Multiple Netgear routers have a high severity (8.1) remote code execution vulnerability that could be exploited by remote attackers to take control if the system.
The vulnerability is in the Circle component that updates parental control features - even if that feature is not enabled.
Recommendation is to update the firmware. Updating infrastructure firmware is good security practice.
The affected Netgear models:
- R6400v2 (fixed in firmware version 1.0.4.120)
- R6700 (fixed in firmware version 1.0.2.26)
- R6700v3 (fixed in firmware version 1.0.4.120)
- R6900 (fixed in firmware version 1.0.2.26)
- R6900P (fixed in firmware version 3.3.142_HOTFIX)
- R7000 (fixed in firmware version 1.0.11.128)
- R7000P (fixed in firmware version 1.3.3.142_HOTFIX)
- R7850 (fixed in firmware version 1.0.5.76)
- R7900 (fixed in firmware version 1.0.4.46)
- R8000 (fixed in firmware version 1.0.4.76)
- RS400 (fixed in firmware version 1.5.1.80)
No comments:
Post a Comment