Multiple stack overflow vulnerabilities in Netgear R8500 affecting wireless.cgi
CVE-2024-51000

Currently unrated

Key Information:

Vendor: Netgear
Status: R8500
Vendor: CVE Published:; 5 November 2024

Summary

The Netgear R8500 device version v1.0.2.160 has been identified with multiple stack overflow vulnerabilities in the wireless.cgi component. Attackers can exploit these vulnerabilities by sending specially crafted POST requests that manipulate the opmode, opmode_an, and opmode_an_2 parameters. This exploitation can lead to a Denial of Service (DoS), disrupting device functionality and affecting user access.

References

https://www.netgear.com/about/security/

https://github.com/wudipjq/my_vuln/blob/main/Netgear4/vul...

Timeline

Vulnerability published
Nov 5, 2024
Vulnerability Reserved
Oct 28, 2024