Netgear routers R7000P before v1.3.3.154, R6900P before v1.3.3.154, R7960P before v1.4.4.94, and R8000P before v1.4.4.94 were discovered to contain a pre-authentication stack overflow.
References
Link | Resource |
---|---|
https://hdwsec.fr/blog/20221109-netgear/ | Broken Link |
https://www.netgear.com/about/security/ | Vendor Advisory |
https://kb.netgear.com/000065242/Security-Advisory-for-Pre-authentication-Stack-Overflow-on-some-Routers-and-Nighthawk-WiFi-Mesh-Systems-PSV-2022-0146 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Information
Published : 2023-01-30 16:15
Updated : 2023-02-07 18:02
NVD link : CVE-2022-48176
Mitre link : CVE-2022-48176
JSON object : View
CWE
CWE-787
Out-of-bounds Write
Products Affected
netgear
- r6900p
- r6900p_firmware
- r7000p
- ms60_firmware
- mr60
- mr60_firmware
- r7960p_firmware
- r7000p_firmware
- r8000p_firmware
- r7960p
- r8000p
- ms60