CVE-2022-4390

Name of the Vulnerable Software and Affected Versions NETGEAR RAX30 AX2400 series of routers versions prior to 1.0.9.90

Description A network misconfiguration is present in the affected devices, where IPv6 is enabled for the WAN interface by default. However, the firewall restrictions in place for IPv4 traffic are not applied to the WAN interface for IPv6. This allows arbitrary access to services running on the device that may be listening via IPv6, such as the SSH and Telnet servers on ports 22 and 23. The misconfiguration could allow an attacker to interact with services intended only for local network clients.

Recommendations For versions prior to 1.0.9.90, update to version 1.0.9.90 or later to resolve the issue. As a temporary workaround, consider disabling the SSH and Telnet servers until a patch is available. Restrict access to the WAN interface for IPv6 traffic to minimize the risk of exploitation.