CVE-2022-38955

Name of the Vulnerable Software and Affected Versions Netgear WPN824EXT WiFi Range Extender versions 1.1.1 through 1.1.9

Description An exploitable firmware modification issue was discovered, allowing an attacker to conduct a Man-in-the-Middle (MITM) attack. This attack can modify the user-uploaded firmware image and bypass the CRC check. A successful attack can introduce a backdoor to the device or make it unresponsive due to a Denial of Service (DoS).

Recommendations For versions 1.1.1 through 1.1.9, update the firmware to a version that is not affected by this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.