CVE-2024-51013

Name of the Vulnerable Software and Affected Versions Netgear R7000P version 1.3.3.154

Description The issue is related to a stack overflow vulnerability in the wireless.cgi script of the NETGEAR R7000P router's firmware, specifically when handling the RADIUSAddr%d wla parameter. This can be exploited by sending a specially crafted POST request to cause a Denial of Service (DoS).

Recommendations For Netgear R7000P version 1.3.3.154, consider disabling access to the wireless.cgi script until a patch is available to prevent exploitation of the RADIUSAddr%d wla parameter. Restricting access to this script can help minimize the risk of a Denial of Service (DoS) attack. At the moment, there is no information about a newer version that contains a fix for this vulnerability.