NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

hc1ng's avatar
hc1ng
Aspirant
Aug 25, 2024

Passwords included as plaintext in syslog messages

Looking through my Splunk logs I notice that my WAX610 has started including the plaintext login password in syslog messages (below) This is software version 10.8.8.6. Looking through Splunk ...
Pramendra's avatar
Pramendra
NETGEAR Expert
Aug 26, 2024

Hi hc1ng 

 

Thanks for bringing this to NETGEAR notice. This must be a bug. We will get this checked and addressed ASAP.

 

Thanks!

Pramendra

hc1ng's avatar
hc1ng
Aspirant
Aug 26, 2024

Thanks. Please update as soon as possible with plans for a fix. This is a serious security issue - even after the offending syslog messages stop being generated they will persist in the Splunk database for the data retention period.

NETGEAR Academy

Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology! 

Join Us!

ProSupport for Business

Comprehensive support plans for maximum network uptime and business peace of mind.

 

Learn More