Smalls

Authenticated administrators connected to the local network can gain elevated access to the router and make unauthorized changes to router software and functionality.

**Name of the Vulnerable Software and Affected Versions** NETGEAR Nighthawk R7000P versions through 1.3.3.154 **Description** A flaw exists in NETGEAR Nighthawk R7000P routers that allows an authenticated administrator to execute OS command injections. This is caused by insufficient input validation. The vulnerability allows for the execution of arbitrary commands on the underlying operating system. **Recommendations** Update to a version later than 1.3.3.154.