CVE-2022-42221

Name of the Vulnerable Software and Affected Versions Netgear R6220 version 1.1.0.114 1.0.1

Description The issue is related to incorrect access control, resulting in a command injection vulnerability. It is also described as a lack of data cleaning measures at the management level, which can be exploited by a remote attacker to execute arbitrary commands.

Recommendations For Netgear R6220 version 1.1.0.114 1.0.1, consider restricting access to the management interface to minimize the risk of exploitation until a patch is available. As a temporary workaround, avoid using any potentially vulnerable functions or parameters that could be used for command injection. At the moment, there is no information about a newer version that contains a fix for this vulnerability.