CVE-2024-51000

Name of the Vulnerable Software and Affected Versions Netgear R8500 version 1.0.2.160

Description The issue is related to multiple stack overflow vulnerabilities in the wireless.cgi component of the Netgear R8500 router's firmware. These vulnerabilities are caused by uncontrolled copying of user input when handling the opmode, opmode an, and opmode an 2 parameters. This allows attackers to cause a Denial of Service (DoS) via a crafted POST request to the "wireless.cgi" endpoint.

Recommendations For Netgear R8500 version 1.0.2.160, consider disabling the wireless.cgi component or restricting access to it until a patch is available. Avoid using the opmode, opmode an, and opmode an 2 parameters in the affected endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.