Format String Vulnerability in NETGEAR Nighthawk WiFi6 Router
CVE-2023-27853
9.8CRITICAL
Summary
The NETGEAR Nighthawk WiFi6 Router prior to version V1.0.10.94 is susceptible to a format string vulnerability present in its SOAP service. This flaw can be exploited by attackers, potentially enabling them to execute arbitrary code on the device, which compromises its security and functionality. Users are encouraged to update their devices promptly to mitigate this risk.
Affected Version(s)
NETGEAR Nighthawk WiFi6 Router prior to V1.0.10.94
References
CVSS V3.1
Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved