Netgear Won’t Patch 45 Router Models Vulnerable to Serious Flaw

2020-08-03 19:03

UPDATE. Netgear will not patch 45 router models that are vulnerable to a high-severity remote code execution flaw, the router company revealed last week.

The company says that routers that won't receive updates are outdated or have reached EOL. The remote code execution vulnerability in question, which was disclosed June 15, allows network-adjacent attackers to bypass authentication on vulnerable Netgear routers - sans authentication.

The high-severity flaw affects 79 Netgear Wi-Fi routers and home gateway models - but Netgear says that 45 of those router models are outside of its "Security support period."

The flaw was reported to Netgear on Jan. 8, 2020, and on June 15, 2020 the security advisory for the flaw was publicly released without a patch available.

Netgear has rolled out patches for 34 of the vulnerable models since the flaw was disclosed.

News URL

https://threatpost.com/netgear-wont-patch-45-router-models-vulnerable-to-serious-flaw/157977/

#netgear #patch #router

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Netgear		502	8	474	462	149	1093