CVE-2022-27641
published 2023-03-29CVE-2022-27641: This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700v3 1.0.4.120_10.0.91 routers…
high8.8CVSS 3.1
AVAACLPRNUINSUCHIHAH
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700v3 1.0.4.120_10.0.91 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the NetUSB module. The issue results from the lack of proper validation of user-supplied data, which can result in an integer overflow before allocating a buffer. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-15806.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| netgear | d7800_firmware | < 1.0.1.68 | 1.0.1.68 |
| netgear | ex6200_firmware | < 1.0.1.90 | 1.0.1.90 |
| netgear | ex8000_firmware | < 1.0.1.240 | 1.0.1.240 |
| netgear | r6220_firmware | < 1.1.0.112 | 1.1.0.112 |
| netgear | r6230_firmware | < 1.1.0.112 | 1.1.0.112 |
| netgear | r6400_firmware | < 1.0.4.122 | 1.0.4.122 |
| netgear | r6700_firmware | < 1.0.4.122 | 1.0.4.122 |
| netgear | r6700v3 | — | — |
| netgear | r7000_firmware | < 1.0.11.130 | 1.0.11.130 |
| netgear | r7800_firmware | < 1.0.2.90 | 1.0.2.90 |