NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
Can't find latest CBR40 Firmware as Described in Security Bulletin
Security bullitens list this info: NETGEAR has released fixes or hotfixes for an unauthenticated command injection security vulnerability on the following product models: CBR40, running firmware v...
Where do you find this information?
Nothing posted yet on NG download site:
https://www.netgear.com/support/product/CBK40.aspx#download
Something to contact NG support about and see.
The RBS20 firmware link that my slave says is incompatible is at:
https://www.netgear.com/support/product/RBS20.aspx#download
Top Support Articles- EU Declarations of Conformity
- RBR20 / RBS20 Firmware Version 2.6.2.104 <=====
- Which security features does my Orbi WiFi System support?
- Security Advisory for Security Misconfiguration on Some Routers, Range Extenders, and Orbi WiFi Systems, PSV-2020-0112
- Security Advisory for Unauthenticated Command Injection Vulnerability on Some Extenders and Orbi WiFi Systems, PSV-2020-0301
- Security Advisory for Stored Cross Site Scripting on Some Routers and Orbi WiFi Systems, PSV-2018-0539
You need to use what is avialable from the CBK site:
https://www.netgear.com/support/product/CBK40.aspx#download
Untill NG makes it compatible with the CBR40.
What this is telling me is that the CBK40/CBR40 have not received updates, and that this vulnerability remains for the CBK40/CBR40 products. Not exactly comforting to know there is a known 8.5+ ranked hack that your gear is subject to.
As for contacting support, what you probably already know, they do not talk with owners after 90 days from purchase unless you have paid for an expensive support plan.