Multiple Stack Overflow Vulnerabilities in Netgear Routers
CVE-2024-51004

Currently unrated

Key Information:

Vendor
Netgear
Status
R8500 and R7000P Routers
Vendor
CVE Published:
5 November 2024

Summary

Netgear R8500 and R7000P routers have been found to contain multiple stack overflow vulnerabilities in the usb_device.cgi component, specifically affecting the cifs_user, read_access, and write_access parameters. These vulnerabilities can be exploited by attackers to execute crafted POST requests, leading to potential Denial of Service (DoS) scenarios. Users of the affected router models should take immediate action to update their devices to mitigate these risks.

References

https://www.netgear.com/about/security/
https://github.com/wudipjq/my_vuln/blob/main/Netgear4/vul...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.