Stack Overflow Vulnerability in Netgear Networking Device
CVE-2024-51007

Currently unrated

Key Information:

Vendor: Netgear
Status: XR300
Vendor: CVE Published:; 5 November 2024

Summary

The Netgear XR300 version 1.0.3.78 has been found susceptible to a stack overflow vulnerability through the passphrase parameter in wireless.cgi. This security flaw allows potential attackers to exploit the device by sending specially crafted POST requests, which can lead to a Denial of Service (DoS) condition. The seriousness of this vulnerability emphasizes the importance of ensuring that devices are updated to the latest firmware to mitigate risks and safeguard network integrity.

References

https://www.netgear.com/about/security/

https://github.com/wudipjq/my_vuln/blob/main/Netgear5/vul...

Timeline

Vulnerability published
Nov 5, 2024
Vulnerability Reserved
Oct 28, 2024