PT-2023-15700 · NetGear · Mr60+5
Published
2023-02-13
·
Updated
2025-03-21
·
CVE-2022-48322
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
NETGEAR Nighthawk WiFi Mesh systems and routers versions prior to the following:
MR60 version 1.1.7.132
MS60 version 1.1.7.132
R6900P version 1.3.3.154
R7000P version 1.3.3.154
R7960P version 1.4.4.94
R8000P version 1.4.4.94
Description
The issue is a stack-based buffer overflow. This type of overflow occurs when more data is written to a buffer than it is designed to hold, causing the extra data to spill over into adjacent areas of memory, potentially leading to a crash or the execution of malicious code.
Recommendations
For MR60 version prior to 1.1.7.132, update to version 1.1.7.132 or later.
For MS60 version prior to 1.1.7.132, update to version 1.1.7.132 or later.
For R6900P version prior to 1.3.3.154, update to version 1.3.3.154 or later.
For R7000P version prior to 1.3.3.154, update to version 1.3.3.154 or later.
For R7960P version prior to 1.4.4.94, update to version 1.4.4.94 or later.
For R8000P version prior to 1.4.4.94, update to version 1.4.4.94 or later.
Fix
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Mr60
Ms60
R6900P
R7000P
R7960P
R8000P