CVE-2024-1431

Name of the Vulnerable Software and Affected Versions Netgear R7000 version 1.0.11.136 10.2.120

Description A vulnerability was found in the Web Management Interface of the Netgear R7000, affecting some unknown functionality of the file /debuginfo.htm. This issue leads to information disclosure. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Recommendations For Netgear R7000 version 1.0.11.136 10.2.120, consider restricting access to the /debuginfo.htm file of the Web Management Interface until a patch is available. As a temporary workaround, avoid using the Web Management Interface if possible, to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.