CVE-2023-27853

Name of the Vulnerable Software and Affected Versions NETGEAR Nighthawk WiFi6 Router versions prior to V1.0.10.94

Description The issue is related to a format string vulnerability in a SOAP service of the NETGEAR Nighthawk WiFi6 Router. This vulnerability could allow an attacker to execute arbitrary code on the device. The vulnerability is associated with the use of uncontrolled format strings in the SOAP service, which can be exploited by a remote attacker to execute arbitrary code.

Recommendations For versions prior to V1.0.10.94, update to version V1.0.10.94 or later to resolve the issue. As a temporary workaround, consider restricting access to the SOAP service until a patch is applied.