NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
CM1000 - pre-purchase questions
I'm considering replacing my cable modem with a Netgear CM1000. I have a few pre-purchase questions.
1) Apparently CM1000 has the CSRF/LocalFile/XSS vulnerability identified in 2015
https://community.netgear.com/t5/Cable-Modems-Routers/CM1000-security-vulnerability/td-p/1203592
This has been fixed for the CM600 by a firmware upgrade but there is no firmware upgrade available for the CM1000.
Are new CM1000s still vulnerable?
Does this modem have other known vulnerabilities?
2) What is the difference between CM1000V1 and CM1000V2. I can't tell the difference from the Product Data sheets.
3) Anyone have experience using the CM1000 with the Pepwave SOHO Surf MK3?
TIA
2 Replies
Additions
>One difference I found between V1 and V2 in the Product Data Sheets is that V1 specifies Xfinity as a provider and V2 includes other providers. My ISP lists CM1000 as a compatible modem so does it matter which one I buy?
>Is it true that the user can't upgrade the firmware for CM1000 and other Netgear modems - you have to wait for your ISP to upgrade even when you didn't get the modem through the ISP?!
The Netgear support pages suggest this is the case. That might be a deal stopper since I use a small ISP. I'm not sure they roll anything out.
Ask yoru ISP which version of the CM is supported. They will have this information.
Most cable ISPs don't allow any user regardless of ISP provided or User bought modems to be updated by the user. ISP hold this responsibility. Some ISP won't update user bought modems. Something else to ask your ISP about. Cable ISPs handle the testing and ceritifcation of modem FW on there systems.
