Vulnerability Details CVE-2022-48176
Netgear routers R7000P before v1.3.3.154, R6900P before v1.3.3.154, R7960P before v1.4.4.94, and R8000P before v1.4.4.94 were discovered to contain a pre-authentication stack overflow.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 16.2%
CVSS Severity
CVSS v3 Score 7.8
References
- https://hdwsec.fr/blog/20221109-netgear/
- https://kb.netgear.com/000065242/Security-Advisory-for-Pre-authentication-Stack-Overflow-on-some-Routers-and-Nighthawk-WiFi-Mesh-Systems-PSV-2022-0146
- https://www.netgear.com/about/security/
- https://hdwsec.fr/blog/20221109-netgear/
- https://kb.netgear.com/000065242/Security-Advisory-for-Pre-authentication-Stack-Overflow-on-some-Routers-and-Nighthawk-WiFi-Mesh-Systems-PSV-2022-0146
- https://www.netgear.com/about/security/
Products affected by CVE-2022-48176
-
cpe:2.3:h:netgear:mr60:-
-
cpe:2.3:h:netgear:ms60:-
-
cpe:2.3:h:netgear:r6900p:-
-
cpe:2.3:h:netgear:r7000p:-
-
cpe:2.3:h:netgear:r7960p:-
-
cpe:2.3:h:netgear:r8000p:-
-
cpe:2.3:o:netgear:mr60_firmware:-
-
cpe:2.3:o:netgear:mr60_firmware:1.0.4.92
-
cpe:2.3:o:netgear:mr60_firmware:1.0.5.102
-
cpe:2.3:o:netgear:mr60_firmware:1.0.6.110
-
cpe:2.3:o:netgear:mr60_firmware:1.0.6.116
-
cpe:2.3:o:netgear:mr60_firmware:1.1.6.122
-
cpe:2.3:o:netgear:mr60_firmware:1.1.6.124
-
cpe:2.3:o:netgear:ms60_firmware:-
-
cpe:2.3:o:netgear:ms60_firmware:1.0.4.92
-
cpe:2.3:o:netgear:ms60_firmware:1.0.5.102
-
cpe:2.3:o:netgear:ms60_firmware:1.0.6.110
-
cpe:2.3:o:netgear:ms60_firmware:1.0.6.116
-
cpe:2.3:o:netgear:ms60_firmware:1.1.6.122
-
cpe:2.3:o:netgear:ms60_firmware:1.1.6.124
-
cpe:2.3:o:netgear:r6900p_firmware:-
-
cpe:2.3:o:netgear:r6900p_firmware:1.0.0.56
-
cpe:2.3:o:netgear:r6900p_firmware:1.0.0.58
-
cpe:2.3:o:netgear:r6900p_firmware:1.0.0.62
-
cpe:2.3:o:netgear:r6900p_firmware:1.0.1.16
-
cpe:2.3:o:netgear:r6900p_firmware:1.2.0.22
-
cpe:2.3:o:netgear:r6900p_firmware:1.3.0.18
-
cpe:2.3:o:netgear:r6900p_firmware:1.3.0.20
-
cpe:2.3:o:netgear:r6900p_firmware:1.3.0.8
-
cpe:2.3:o:netgear:r6900p_firmware:1.3.1.26
-
cpe:2.3:o:netgear:r6900p_firmware:1.3.1.44
-
cpe:2.3:o:netgear:r6900p_firmware:1.3.1.64
-
cpe:2.3:o:netgear:r6900p_firmware:1.3.2.124
-
cpe:2.3:o:netgear:r6900p_firmware:1.3.2.126
-
cpe:2.3:o:netgear:r6900p_firmware:1.3.2.132
-
cpe:2.3:o:netgear:r6900p_firmware:1.3.2.134
-
cpe:2.3:o:netgear:r6900p_firmware:1.3.2.34
-
cpe:2.3:o:netgear:r6900p_firmware:1.3.3.140
-
cpe:2.3:o:netgear:r6900p_firmware:1.3.3.142
-
cpe:2.3:o:netgear:r6900p_firmware:1.3.3.148
-
cpe:2.3:o:netgear:r7000p_firmware:-
-
cpe:2.3:o:netgear:r7000p_firmware:1.0.0.56
-
cpe:2.3:o:netgear:r7000p_firmware:1.0.0.58
-
cpe:2.3:o:netgear:r7000p_firmware:1.0.0.62
-
cpe:2.3:o:netgear:r7000p_firmware:1.0.0.86
-
cpe:2.3:o:netgear:r7000p_firmware:1.0.1.16
-
cpe:2.3:o:netgear:r7000p_firmware:1.2.0.22
-
cpe:2.3:o:netgear:r7000p_firmware:1.3.0.18
-
cpe:2.3:o:netgear:r7000p_firmware:1.3.0.20
-
cpe:2.3:o:netgear:r7000p_firmware:1.3.0.8
-
cpe:2.3:o:netgear:r7000p_firmware:1.3.1.26
-
cpe:2.3:o:netgear:r7000p_firmware:1.3.1.44
-
cpe:2.3:o:netgear:r7000p_firmware:1.3.1.64
-
cpe:2.3:o:netgear:r7000p_firmware:1.3.2.124
-
cpe:2.3:o:netgear:r7000p_firmware:1.3.2.126
-
cpe:2.3:o:netgear:r7000p_firmware:1.3.2.126_10.1.66
-
cpe:2.3:o:netgear:r7000p_firmware:1.3.2.132
-
cpe:2.3:o:netgear:r7000p_firmware:1.3.2.134
-
cpe:2.3:o:netgear:r7000p_firmware:1.3.2.34
-
cpe:2.3:o:netgear:r7000p_firmware:1.3.3.140
-
cpe:2.3:o:netgear:r7000p_firmware:1.3.3.142
-
cpe:2.3:o:netgear:r7000p_firmware:1.3.3.148
-
cpe:2.3:o:netgear:r7960p_firmware:-
-
cpe:2.3:o:netgear:r7960p_firmware:1.4.1.44
-
cpe:2.3:o:netgear:r7960p_firmware:1.4.1.50
-
cpe:2.3:o:netgear:r7960p_firmware:1.4.1.62
-
cpe:2.3:o:netgear:r7960p_firmware:1.4.1.66
-
cpe:2.3:o:netgear:r7960p_firmware:1.4.2.84
-
cpe:2.3:o:netgear:r7960p_firmware:1.4.3.88
-
cpe:2.3:o:netgear:r8000p_firmware:-
-
cpe:2.3:o:netgear:r8000p_firmware:1.1.4.6
-
cpe:2.3:o:netgear:r8000p_firmware:1.1.5.14
-
cpe:2.3:o:netgear:r8000p_firmware:1.3.0.10
-
cpe:2.3:o:netgear:r8000p_firmware:1.4.0.10
-
cpe:2.3:o:netgear:r8000p_firmware:1.4.1.24
-
cpe:2.3:o:netgear:r8000p_firmware:1.4.1.30
-
cpe:2.3:o:netgear:r8000p_firmware:1.4.1.42
-
cpe:2.3:o:netgear:r8000p_firmware:1.4.1.50
-
cpe:2.3:o:netgear:r8000p_firmware:1.4.1.62
-
cpe:2.3:o:netgear:r8000p_firmware:1.4.1.66
-
cpe:2.3:o:netgear:r8000p_firmware:1.4.2.84
-
cpe:2.3:o:netgear:r8000p_firmware:1.4.3.88