- Netgear found two defects that affect Wi -Fi access points and routines
- To mitigate them, he launched a new firmware for devices
- The company urged users to apply the solution as soon as possible.
Netgear has recently confirmed that a series of critical severity vulnerabilities were recently corrected, which affects multiple access points and routers.
Since errors can be exploited in attacks that do not require user interaction and can lead to a remote code execution (RCE), Netgear urged their clients to apply the corrections released without delay.
A Netgear security advisor said the two defects are traced internally as PSV-2023-0039 (a remote code execution failure) and PSV-2021-0017 (an authentication derivation failure). These Wi -Fi 6 access points and Nighthawk Pro: XR1000, XR1000V2, XR500, Wax206, Wax220 and Wax214V2 and Wax214V2 games affect these access points.
Reach the end of life
“Netgear strongly recommends that I download the last firmware as soon as possible,” said the company in the security notice, before giving a step -by -step tutorial on how to download and install the last firmware for Netgear routers.
“Netgear is not responsible for the consequences that could have been avoided following the recommendations in this notification,” he warned.
Internet routers and Wi -Fi access points are among the most attacked devices because they serve as a gateway between a local network and the Internet. They are also considered a “low hanging fruit” in cyber attacks, since many have default credentials, obsolete firmware or weak security settings. In many cases, users maintain their devices beyond their end of life date, losing support and exposing themselves to known vulnerabilities.
Attackers can use compromised routers for botnets, man attacks in the middle, kidnapping of DNS or data interception. Since the routers operate 24 hours a day, 7 days a week and control network traffic, an attacker who gains control can redirect users to malicious sites, steal credentials or implement malware in the networks.
Due to its popularity, Netgear is a popular objective for computer pirates. In June 2024, a small -off -budget small budgets router was found vulnerable to half a dozen defects that could lead to the theft of confidential information, and possibly even the acquisition of complete devices. The device reached its end of life, so Netgear did not bother to release a patch.
