CVE-2024-36795

Name of the Vulnerable Software and Affected Versions: Netgear WNR614 version JNR1010V2/N300-V1.1.0.54 1.0.1

Description: The issue is related to insecure permissions in the Netgear WNR614 router's firmware, which can allow attackers to access URLs and directories embedded within the firmware via unspecified vectors. This can potentially lead to unauthorized access to protected information.

Recommendations: For version JNR1010V2/N300-V1.1.0.54 1.0.1, consider restricting access to the firmware's embedded URLs and directories until a patch is available. As a temporary workaround, limit the exposure of the router to the internet and avoid using it for sensitive operations. At the moment, there is no information about a newer version that contains a fix for this vulnerability.