NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

Olivier421's avatar
Olivier421
Aspirant
Oct 11, 2021

What is port 8443 for ?

With firmware v12.0.13.8, i've noticed a new port in use, 8443/tcp . My HTTPS is on 443.   The port 8443 accepts weak ciphers, such as SHA1 and is vulnerable to sweet32 (CVE of 2016 ...).   Brow...
schumaku's avatar
schumaku
Guru - Experienced User
Oct 11, 2021

The M4300 series switch does host the REST API service using the https protocol on port 8443 afaik. LaurentMa please.

LaurentMa's avatar
LaurentMa
NETGEAR Expert
Oct 12, 2021

Thank you schumaku 

 

Olivier421 we have received your request here, at ProAVDesign@netgear.com and also your issue raised at our Tech Support. Be sure we are going to assess the matter as fast as possible.

 

We can report the progress in this thread, moving forward. Looking forward to a rapid resolution!

 

Regards,

  • NZ74's avatar
    NZ74
    Aspirant
    Feb 23, 2022

    Is there a resolution to this problem? I'm seeing the same "64-bit block cipher 3DES vulnerable to the SWEET32 attack (CVE-2016-2183)" vulnerability on my M4300 for port 8443.

     

    Can I disable a feature to resolve this?

    • Olivier421's avatar
      Olivier421
      Aspirant
      Feb 24, 2022

      Hello NZ74 

       

      i raised again a ticket to Netgear support shortly after seeing newest firmware 12.0.5.7 not fixing any vuln

      https://kb.netgear.com/000064614/M4300-Firmware-Version-12-0-15-7

       

      Netgear support responded me "the fix is being released in March."

      I'll try it shortly after being released and will respond back here, hopefully with good news.

NETGEAR Academy

Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology! 

Join Us!

ProSupport for Business

Comprehensive support plans for maximum network uptime and business peace of mind.

 

Learn More