Vulnerabilities > CVE-2022-48176 - Out-of-bounds Write vulnerability in Netgear products
Attack vector
LOCAL Attack complexity
LOW Privileges required
LOW Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
Netgear routers R7000P before v1.3.3.154, R6900P before v1.3.3.154, R7960P before v1.4.4.94, and R8000P before v1.4.4.94 were discovered to contain a pre-authentication stack overflow.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
References
- https://hdwsec.fr/blog/20221109-netgear/
- https://hdwsec.fr/blog/20221109-netgear/
- https://kb.netgear.com/000065242/Security-Advisory-for-Pre-authentication-Stack-Overflow-on-some-Routers-and-Nighthawk-WiFi-Mesh-Systems-PSV-2022-0146
- https://kb.netgear.com/000065242/Security-Advisory-for-Pre-authentication-Stack-Overflow-on-some-Routers-and-Nighthawk-WiFi-Mesh-Systems-PSV-2022-0146
- https://www.netgear.com/about/security/
- https://www.netgear.com/about/security/