CRITICAL🇵🇱 Wersja polska

CVE-2023-49007

CVSS 9.8v3.1pub. 2023-12-08upd. 2024-11-21

In Netgear Orbi RBR750 firmware before V7.2.6.21, there is a stack-based buffer overflow in /usr/sbin/httpd.

🤖 AI Analysis
How it works

The vulnerability (CWE-787: Out-of-bounds Write) is located in the /usr/sbin/httpd binary file that handles the router's web interface. An attacker can send a specially crafted HTTP request that causes data to be written outside the boundaries of a buffer on the stack. Stack overflow can lead to overwriting a function's return address and redirecting code execution to an attacker-controlled payload.

Impact

Successful exploitation of this vulnerability allows an attacker to execute arbitrary code remotely (RCE) on the device with the privileges of the httpd process, which in practice may mean complete takeover of the router — violation of confidentiality, integrity, and system availability.

Mitigation & patch

Update the firmware of the Netgear Orbi RBR750 device to version V7.2.6.21 or newer. The update can be downloaded from the manufacturer's website. Until the update is applied, it is recommended to restrict access to the router's administrative interface only to trusted IP addresses and to disable remote management over the WAN network.

Who is affected

Netgear Orbi RBR750 with firmware versions earlier than V7.2.6.21

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Netgear Rbr750

    HW
    Netgear
    wszystkie wersje
  • Netgear Rbr750 Firmware

    OS
    Netgear
    < 7.2.6.21
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Memory
CWE
References

Related vulnerabilities

CVE-2021-45506CRITICAL9.6ten sam produkt

Certain NETGEAR devices are affected by authentication bypass. This affects CBR750 before 4.6.3.6, RBK752 befo...

CVE-2021-45505CRITICAL9.6ten sam produkt

Certain NETGEAR devices are affected by authentication bypass. This affects CBR750 before 4.6.3.6, RBK752 befo...

CVE-2021-45503CRITICAL9.6ten sam produkt

Certain NETGEAR devices are affected by authentication bypass. This affects CBR750 before 4.6.3.6, RBK752 befo...

CVE-2021-45502CRITICAL9.6ten sam produkt

Certain NETGEAR devices are affected by authentication bypass. This affects CBR750 before 4.6.3.6, RBK752 befo...

CVE-2021-45507CRITICAL9.6ten sam produkt

Certain NETGEAR devices are affected by authentication bypass. This affects CBR40 before 2.5.0.24, CBR750 befo...