Multiple Stack Overflow Vulnerabilities in Netgear Routers
CVE-2024-51003

Currently unrated

Key Information:

Vendor: Netgear
Status: Netgear Routers
Vendor: CVE Published:; 5 November 2024

Summary

Several Netgear routers, including R8500, XR300, R7000P, and R6400, are susceptible to multiple stack overflow vulnerabilities within the ap_mode.cgi component. Exploiting these vulnerabilities through crafted POST requests targeting the apmode_dns1_pri and apmode_dns1_sec parameters can trigger a Denial of Service (DoS), compromising network availability and stability. Users are advised to apply available security patches to mitigate risks associated with these vulnerabilities.

References

https://www.netgear.com/about/security/

https://github.com/wudipjq/my_vuln/blob/main/Netgear4/vul...

Timeline

Vulnerability published
Nov 5, 2024
Vulnerability Reserved
Oct 28, 2024