Talsonor

**Name of the Vulnerable Software and Affected Versions** ReadyCloud client app (affected versions not specified) **Description** An improper implementation of TLS certificate validation allows an attacker to perform attacker-in-the-middle (MiTM) style attacks, which are attacks where the perpetrator secretly relays and possibly alters the communications between two parties who believe they are directly communicating with each other. This issue impacts the confidentiality of the product. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: R6700v3 versions prior to 1.0.4.98 R6400v2 versions prior to 1.0.4.98 R7000 versions prior to 1.0.11.106 R6900P versions prior to 1.3.2.124 R7000P versions prior to 1.3.2.124 R7900 versions prior to 1.0.4.26 R7850 versions prior to 1.0.5.60 R8000 versions prior to 1.0.4.58 RS400 versions prior to 1.5.0.48 R6400 versions prior to 1.0.1.62 R6700 versions prior to 1.0.2.16 R6900 versions prior to 1.0.2.16 MK60 versions prior to 1.0.5.102 MR60 versions prior to 1.0.5.102 MS60 versions prior to 1.0.5.102 CBR40 versions prior to 2.5.0.10 R8000P versions prior to 1.4.1.62 R7960P versions prior to 1.4.1.62 R7900P versions prior to 1.4.1.62 RAX15 versions prior to 1.0.1.64 RAX20 versions prior to 1.0.1.64 RAX75 versions prior to 1.0.3.102 RAX80 versions prior to 1.0.3.102 RAX200 versions prior to 1.0.2.102 RAX45 versions prior to 1.0.2.64 RAX50 versions prior to 1.0.2.64 EX7500 versions prior to 1.0.0.68 EAX80 versions prior to 1.0.1.62 EAX20 versions prior to 1.0.0.36 RBK752 versions prior to 3.2.16.6 RBK753 versions prior to 3.2.16.6 RBK753S versions prior to 3.2.16.6 RBK754 versions prior to 3.2.16.6 RBR750 versions prior to 3.2.16.6 RBS750 versions prior to 3.2.16.6 RBK852 versions prior to 3.2.16.6 RBK853 versions prior to 3.2.16.6 RBK854 versions prior to 3.2.16.6 RBR850 versions prior to 3.2.16.6 RBS850 versions prior to 3.2.16.6 RBR840 versions prior to 3.2.16.6 RBS840 versions prior to 3.2.16.6 R6120 versions prior to 1.0.0.70 R6220 versions prior to 1.1.0.100 R6230 versions prior to 1.1.0.100 R6260 versions prior to 1.1.0.76 R6850 versions prior to 1.1.0.76 R6350 versions prior to 1.1.0.76 R6330 versions prior to 1.1.0.76 D7800 versions prior to 1.0.1.58 RBK50 versions prior to 2.6.1.40 RBR50 versions prior to 2.6.1.40 RBS50 versions prior to 2.6.1.40 RBK40 versions prior to 2.6.1.36 RBR40 versions prior to 2.6.1.36 RBS40 versions prior to 2.6.1.38 RBK23 versions prior to 2.6.1.36 RBR20 versions prior to 2.6.1.38 RBS20 versions prior to 2.6.1.38 RBK12 versions prior to 2.6.1.44 RBK13 versions prior to 2.6.1.44 RBK14 versions prior to 2.6.1.44 RBK15 versions prior to 2.6.1.44 RBR10 versions prior to 2.6.1.44 RBS10 versions prior to 2.6.1.44 R6800 versions prior to 1.2.0.72 R6900v2 versions prior to 1.2.0.72 R6700v2 versions prior to 1.2.0.72 R7200 versions prior to 1.2.0.72 R7350 versions prior to 1.2.0.72 R7400 versions prior to 1.2.0.72 R7450 versions prior to 1.2.0.72 AC2100 versions prior to 1.2.0.72 AC2400 versions prior to 1.2.0.72 AC2600 versions prior to 1.2.0.72 R7800 versions prior to 1.0.2.74 R8900 versions prior to 1.0.5.24 R9000 versions prior to 1.0.5.24 RAX120 versions prior to 1.0.1.136 XR450 versions prior to 2.3.2.66 XR500 versions prior to 2.3.2.66 XR700 versions prior to 1.0.1.34 XR300 versions prior to 1.0.3.50 Description: Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.