Denial of Service Vulnerability in Netgear Routers
CVE-2024-50997

Currently unrated

Key Information:

Vendor: Netgear
Status: Netgear Routers
Vendor: CVE Published:; 5 November 2024

Summary

Certain versions of Netgear routers are susceptible to a stack overflow vulnerability through the 'pptp_user_ip' parameter in the 'pptp.cgi' file. This allows attackers to send specially crafted POST requests to exploit the issue, potentially resulting in a Denial of Service condition. This highlights the need for users to update their firmware promptly to mitigate potential risks.

References

https://www.netgear.com/about/security/

https://github.com/wudipjq/my_vuln/blob/main/Netgear4/vul...

Timeline

Vulnerability published
Nov 5, 2024
Vulnerability Reserved
Oct 28, 2024