MULTIPLE VULNERABILITIES IN NETGEAR PRODUCTS COULD ALLOW FOR REMOTE CODE EXECUTION

Summary: Netgear has published several vulnerabilities in their firmware that allow for remote code execution. Successful exploitation can result in the attacker gaining full control of the system. Failed attempts to exploit may cause Denial of Service. Customers are advised to upgrade immediately. We see Netgear devices used regularly in critical infrastructure organizations. Organizations are advised to have consistent vulnerability discovery/management programs with regular patching of all devices (not just PC’s and servers). Also advise restricting administrative access to devices, especially devices without a keyboard.

 

TLP: WHITE

MS-ISAC CYBERSECURITY ADVISORY

MS-ISAC ADVISORY NUMBER: 2020-087

DATE(S) ISSUED: 06/30/2020

SUBJECT: Multiple Vulnerabilities in Netgear Products Could Allow for Remote Code Execution

OVERVIEW:

Multiple vulnerabilities have been discovered in Netgear products, the most severe of which could allow for remote code execution. Netgear is a manufacturer of networked devices such as Network Attached Storage (NAS), routers, switches, cable and DSL modems, and video cameras. Successful exploitation of the most severe of these vulnerabilities could allow an attacker to execute code remotely and gain full control of the affected system. Failed exploit attempts could result in a denial of service condition.

THREAT INTELLIGENCE: There are currently no reports of these vulnerabilities being exploited in the wild.

SYSTEMS AFFECTED:

Products with no patches released at the time of this advisory.

RISK:

Government:

Businesses:

Home UsersMedium

TECHNICAL SUMMARY:

Multiple vulnerabilities have been discovered in Netgear products, the most severe of which could allow for arbitrary code execution. A full list of all vulnerabilities can be found at the link below:

https://www.netgear.com/about/security/

Successful exploitation of the most severe of these vulnerabilities could allow an attacker to execute code remotely and gain full control of the affected system. Failed exploit attempts could result in a denial of service condition.

RECOMMENDATIONS:

We recommend the following actions be taken:

REFERENCES:

Netgear:

https://www.netgear.com/about/security

Leave a Reply