CVE-2024-52026
published 2024-11-05CVE-2024-52026: Netgear XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 was discovered to contain a stack overflow via the pppoe_localip parameter at bsw_pppoe.cgi…
medium5.7CVSS 3.1
AVAACLPRLUINSUCNINAH
Netgear XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 was discovered to contain a stack overflow via the pppoe_localip parameter at bsw_pppoe.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| netgear | r6400v2_firmware | — | — |
| netgear | r7000p_firmware | — | — |
| netgear | xr300_firmware | — | — |