NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
Netgear Nighthawk M1 vulnerability
When will Netgear release a solution / fix for the Netgear Nighthawk M1 vulnerability as mentioned in the link below ?
VulDB 140070 · CVE-2019-14527
Netgear Nighthawk M1 prior 12.06.03 Web Interface System Command privilege escalation
https://vuldb.com/?id.140070
Hi, All,
This has been brought up already to engineers. No security vulnerability has been found on our test.
Please check reference link:
https://kb.netgear.com/000061155/Security-Advisory-for-Firmware-Encryption-on-MR1100-PSV-2019-0055
Regards,
Blanca
Community Team
5 Replies
Upgrading to version 12.06.03 eliminates this vulnerability.
But the Nighthawk M1 says there is no new firmware update :smileysad:
Is there a way to manual download new firmware ?Hi, All,
This has been brought up already to engineers. No security vulnerability has been found on our test.
Please check reference link:
https://kb.netgear.com/000061155/Security-Advisory-for-Firmware-Encryption-on-MR1100-PSV-2019-0055
Regards,
Blanca
Community Teamlmaooo are you sure about that? then explain to me how im able to force a telnet session with the internal linux/busybox OS? smh you guys couldn't even be bothered to change the root password from the default "oelinux123"