R00T3R

**Name of the Vulnerable Software and Affected Versions** NETGEAR EX6000 versions 1.0.0.0 through 1.0.0.37 NETGEAR EX6120 versions 1.0.0.0 through 1.0.0.47 NETGEAR EX6130 versions 1.0.0.0 through 1.0.0.29 NETGEAR R6300v2 versions 1.0.0.0 through 1.0.4.51 NETGEAR R6400 versions 1.0.0.0 through 1.0.1.51 NETGEAR R7000 versions 1.0.0.0 through 1.0.11.125 NETGEAR R7900 versions 1.0.0.0 through 1.0.4.29 NETGEAR R8000 versions 1.0.0.0 through 1.0.4.51 NETGEAR R7000P versions 1.0.0.0 through 1.3.2.123 NETGEAR R8000P versions 1.0.0.0 through 1.4.1.49 NETGEAR RAX80 versions 1.0.0.0 through 1.0.3.87 NETGEAR R6900P versions 1.0.0.0 through 1.3.2.123 NETGEAR R7900P versions 1.0.0.0 through 1.4.1.49 NETGEAR RAX75 versions 1.0.0.0 through 1.0.3.87 **Description** The issue is related to a buffer overflow that can be triggered by an authenticated user. This is due to the lack of size checking for input data, which can allow an attacker to gain unauthorized access to protected information. **Recommendations** For NETGEAR EX6000 versions 1.0.0.0 through 1.0.0.37, update to version 1.0.0.38 or later. For NETGEAR EX6120 versions 1.0.0.0 through 1.0.0.47, update to version 1.0.0.48 or later. For NETGEAR EX6130 versions 1.0.0.0 through 1.0.0.29, update to version 1.0.0.30 or later. For NETGEAR R6300v2 versions 1.0.0.0 through 1.0.4.51, update to version 1.0.4.52 or later. For NETGEAR R6400 versions 1.0.0.0 through 1.0.1.51, update to version 1.0.1.52 or later. For NETGEAR R7000 versions 1.0.0.0 through 1.0.11.125, update to version 1.0.11.126 or later. For NETGEAR R7900 versions 1.0.0.0 through 1.0.4.29, update to version 1.0.4.30 or later. For NETGEAR R8000 versions 1.0.0.0 through 1.0.4.51, update to version 1.0.4.52 or later. For NETGEAR R7000P versions 1.0.0.0 through 1.3.2.123, update to version 1.3.2.124 or later. For NETGEAR R8000P versions 1.0.0.0 through 1.4.1.49, update to version 1.4.1.50 or later. For NETGEAR RAX80 versions 1.0.0.0 through 1.0.3.87, update to version 1.0.3.88 or later. For NETGEAR R6900P versions 1.0.0.0 through 1.3.2.123, update to version 1.3.2.124 or later. For NETGEAR R7900P versions 1.0.0.0 through 1.4.1.49, update to version 1.4.1.50 or later. For NETGEAR RAX75 versions 1.0.0.0 through 1.0.3.87, update to version 1.0.3.88 or later.

**Name of the Vulnerable Software and Affected Versions** NETGEAR CBR40 versions prior to 2.3.5.12 NETGEAR D7000v2 versions prior to 1.0.0.66 NETGEAR D8500 versions prior to 1.0.3.58 NETGEAR R6400 versions prior to 1.0.1.70 NETGEAR R7000 versions prior to 1.0.11.126 NETGEAR R6900P versions prior to 1.3.2.124 NETGEAR R7000P versions prior to 1.3.2.124 NETGEAR R7900 versions prior to 1.0.4.30 NETGEAR R8000 versions prior to 1.0.4.52 NETGEAR WNR3500Lv2 versions prior to 1.2.0.62 **Description** The issue is caused by a buffer overflow. Exploitation of this issue may allow a remote attacker to impact the confidentiality, integrity, and availability of protected information. This can be done by an authenticated user. **Recommendations** For NETGEAR CBR40 versions prior to 2.3.5.12, update to version 2.3.5.12 or later. For NETGEAR D7000v2 versions prior to 1.0.0.66, update to version 1.0.0.66 or later. For NETGEAR D8500 versions prior to 1.0.3.58, update to version 1.0.3.58 or later. For NETGEAR R6400 versions prior to 1.0.1.70, update to version 1.0.1.70 or later. For NETGEAR R7000 versions prior to 1.0.11.126, update to version 1.0.11.126 or later. For NETGEAR R6900P versions prior to 1.3.2.124, update to version 1.3.2.124 or later. For NETGEAR R7000P versions prior to 1.3.2.124, update to version 1.3.2.124 or later. For NETGEAR R7900 versions prior to 1.0.4.30, update to version 1.0.4.30 or later. For NETGEAR R8000 versions prior to 1.0.4.52, update to version 1.0.4.52 or later. For NETGEAR WNR3500Lv2 versions prior to 1.2.0.62, update to version 1.2.0.62 or later.

**Name of the Vulnerable Software and Affected Versions** NETGEAR R6300v2 versions prior to 1.0.4.52 NETGEAR R6400 versions prior to 1.0.1.52 NETGEAR R6900 versions prior to 1.0.2.8 NETGEAR R7000 versions prior to 1.0.9.88 NETGEAR R7900 versions prior to 1.0.3.18 NETGEAR R8000 versions prior to 1.0.4.46 NETGEAR R7900P versions prior to 1.4.1.50 NETGEAR R8000P versions prior to 1.4.1.50 NETGEAR RAX75 versions prior to 1.0.3.88 NETGEAR RAX80 versions prior to 1.0.3.88 NETGEAR WNR3500Lv2 versions prior to 1.2.0.62 **Description** The issue is caused by a buffer overflow that can be exploited by an authenticated user, potentially allowing a remote attacker to impact the confidentiality, integrity, and availability of protected information. **Recommendations** For NETGEAR R6300v2 version prior to 1.0.4.52, update to version 1.0.4.52 or later. For NETGEAR R6400 version prior to 1.0.1.52, update to version 1.0.1.52 or later. For NETGEAR R6900 version prior to 1.0.2.8, update to version 1.0.2.8 or later. For NETGEAR R7000 version prior to 1.0.9.88, update to version 1.0.9.88 or later. For NETGEAR R7900 version prior to 1.0.3.18, update to version 1.0.3.18 or later. For NETGEAR R8000 version prior to 1.0.4.46, update to version 1.0.4.46 or later. For NETGEAR R7900P version prior to 1.4.1.50, update to version 1.4.1.50 or later. For NETGEAR R8000P version prior to 1.4.1.50, update to version 1.4.1.50 or later. For NETGEAR RAX75 version prior to 1.0.3.88, update to version 1.0.3.88 or later. For NETGEAR RAX80 version prior to 1.0.3.88, update to version 1.0.3.88 or later. For NETGEAR WNR3500Lv2 version prior to 1.2.0.62, update to version 1.2.0.62 or later.