NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

Krille2's avatar
Krille2
Follower
Oct 26, 2017

WN2500RP Range Extender KRACK exploits.

What about the older WN2500RP Range Extender?

As an extender it is obviously affected by the WPA KRACK exploits.

Netgears  security advisor only list new products.  Netgear really need to publish a complete list of older products, if they are affected or not and if you are going to fix them or not.

Your customers with older products are in a limbo and we don’t know if we should wait for a fix or scrap our old devices.

Firmware
Security

6 Replies

  • V8011's avatar
    V8011
    Initiate
    Oct 26, 2017

    I have this extender and would like to add to this thread.

     

    Here is Netgear's Security Advisory regarding the KRACK exploit:

    https://kb.netgear.com/000049498/Security-Advisory-for-WPA-2-Vulnerabilities-PSV-2017-2826-PSV-2017-2836-PSV-2017-2837

     

    There is no mention of this extender in the list. Furthermore, I'm very disappointed in the neglect of your consumer grade product security. 

     

    The last Firmware Update to WN2500RP V1 (V1.0.0.30_1.0.58) was from 2012. Five years ago!

    Due to the outdated Firmware, my WN2500RP V1 is the weakest link in my WIFI network.

     
    --Netgear will you address these problems concerning the WN2500RP V1:

    1) The KRACK exploit?   2) Multiple other security vulnerabilities from the past five years? 3) Is the WN2500RP V1 product supported?

     

    --Finally, as the Original Poster pointed out, Should this extender be trashed and replaced? 

    Any thoughts or suggestions?

  • V8011's avatar
    V8011
    Initiate
    Nov 04, 2017

    Bumping this thread to simplify my previous post

     

    Netgear, on your Security Advisory page for WPA-2 Vulnerabilities your WN2500RP Extender is not listed.

     

    1) Are you still supporting the WN2500RP V1?

    2) Will there be a firmware update to patch the Krack vulnerability and additional security issues?

     

    Would appreciate a reply from anyone regarding the questions above. Sincerely - V8011

    • ElaineM's avatar
      ElaineM
      NETGEAR Employee Retired
      Nov 08, 2017

      NETGEAR provides security updates to fix vulnerabilities or upgrade security in products for the longer of four years after product release date or two years after product end of life.

      It appears your product is outside of those dates.

       

      • rjm676's avatar
        rjm676
        Guide
        Nov 09, 2017
        The firmware for WN2500RPv2 (1.0.1.46) was updated on 11/06/2017. Can that be used for WN2500RPv1?
    • ElaineM's avatar
      ElaineM
      NETGEAR Employee Retired
      Nov 09, 2017

      No, they're different hardware version.

       

      • rjm676's avatar
        rjm676
        Guide
        Nov 10, 2017
        Since the WN2500RP version 1 is still being sold shouldn’t Netgear still support it. Especially for security reasons.