CVE-2024-1430

Name of the Vulnerable Software and Affected Versions Netgear R7000 version 1.0.11.136 10.2.120

Description A vulnerability has been found in the Web Management Interface of the Netgear R7000, affecting an unknown functionality of the file /currentsetting.htm. This vulnerability leads to information disclosure. The exploit has been disclosed to the public and may be used. The vendor was contacted about this disclosure but did not respond.

Recommendations For Netgear R7000 version 1.0.11.136 10.2.120, consider restricting access to the /currentsetting.htm file in the Web Management Interface until a patch is available. As a temporary workaround, avoid using the Web Management Interface to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.