NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Orbi 2.2.1.210 fimware security issue (turns on guest network with no password)
Has anyone else experienced this? I upgraded by Orbi to 2.2.1.210 - everything seemed fine. I have a guest network (with a password) that I leave disabled and only enable when we have a guest. It is ...
I use a spectrum analyzer every now and then to see if my wifi has any interference with neighbors, etc.
Noticed for a couple days that a very strong signal called 'NETGEAR-Guest' had the same signal strength as me and I thought it was a neighbor.
After walking around trying to find the signal I determine that it had to be in my house.
I thought something was weird, so I went to the mobile app and it showed as disabled. In the mobile app, I enabled guest, hit save, then went and disabled guest and save and the guest ap then disappeared.
I wonder how many people out there have a guest signal open and don't even realize it, this seems very bad and I have no idea how this got enabled.
Ahhh same issue here and i didn't know about it until now, i had reloaded the firmware by scratch as well, massive security issue
- I would like to publish this as a security incident. Not sure about that process... It would be good to get the wider community involved.
I had a similar issue and it turned out the satellite was connecting via the backhaul and needed a firmware reset along with a forced sync to the base. Certainly wasn't expecting that, but can imagine it's probably happening to a lot more folks who just expect to plug this up and not check all the settings.
So a factory reset fixed what you were seeing?
User00 wrote:
I had a similar issue and it turned out the satellite was connecting via the backhaul and needed a firmware reset along with a forced sync to the base. Certainly wasn't expecting that, but can imagine it's probably happening to a lot more folks who just expect to plug this up and not check all the settings.
ja6a wrote:
I would like to publish this as a security incident. Not sure about that process... It would be good to get the wider community involved.My system had this issue once. Turns out the errant guest network was coming from one of the satellites. A power-cycle resolved the issue. It's a bug for sure, but it was not much of a security issue, because connecting to the guest SSID provided no IP address to the computer and no network access.
st_shaw wrote:
It's a bug for sure, but it was not much of a security issue, because connecting to the guest SSID provided no IP address to the computer and no network access.Well, if the satellite is connected via ethernet backhaul to the base - then it will allow those devices to connect and be handed off to the base for connectivity into the network. If you look at the connected devices on the base - all of those devices from the satellite appear as wired (via the backhaul).
Did you manage to get it published? This is indeed a pretty nasty security hole in the firmware and given that it's still the active firmware in use at this time, broader communication about it world definitely be a good idea.
- I am not sure where to publish it. Perhaps hackernews? I was a little confused by some of the responses - but yours has inspired me.
