PT-2023-15601 · NetGear · Netgear R7000P+3

Jean-Jamil Khalifé

·

Published

2023-01-30

·

Updated

2025-03-28

·

CVE-2022-48176

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Netgear R7000P versions prior to 1.3.3.154 Netgear R6900P versions prior to 1.3.3.154 Netgear R7960P versions prior to 1.4.4.94 Netgear R8000P versions prior to 1.4.4.94
Description The issue is a pre-authentication stack overflow.
Recommendations For Netgear R7000P versions prior to 1.3.3.154, update to version 1.3.3.154 or later. For Netgear R6900P versions prior to 1.3.3.154, update to version 1.3.3.154 or later. For Netgear R7960P versions prior to 1.4.4.94, update to version 1.4.4.94 or later. For Netgear R8000P versions prior to 1.4.4.94, update to version 1.4.4.94 or later.

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

CVE-2022-48176

Affected Products

Netgear R6900P
Netgear R7000P
Netgear R7960P
Netgear R8000