Avast Mac Security reports my R7000 is vulnerable to hackers. It reports vulnerability ID CVE-2015-0932. I have tried to forward port 80 to an unused IP address and rebooted the router, but the problem persists when I scan again. Is this a real problem and are you planning to release a firmware upgrade to fix the issue? (I use firmware V1.0.7.2_1.1.93.)

Hi All, We have confirmed with Avast regarding the error and it's a false positive information. Avast is looking into it to fix it on their side.

Avast Mac Security reports vulnerability on my Nighthawk R7000

21 Replies

JohnMcEng
Aspirant
Oct 25, 2016
I have the same problem. Really concerned and can't get an answer from Netgear

User input can be executed as a command
The device is vulnerable to hacker attacks. For more info see the corresponding vulnerability ID. An upgrade of the device's software/firmware may fix the issue

CVE-2015-0932
- ElaineM
  NETGEAR Employee Retired
  Oct 26, 2016
  punsk Can you post a screenshot?
  
  JohnMcEng Are you also using Mac and using the latest firmware?
  
  Edit: Also, what's the exact version of your Avast and which Mac OS?
  - punsk
    Aspirant
    Nov 01, 2016
    Here is a screenshot. It's in Norwegian, but translates to something like this:
    
    "User data can be executed as a command.
    
    The unit is vulnerable for hacker attacks. You can find more information with the vulnerability ID. Upgrading the unit's software or firmware may solve the problem. Find out more (link: https://help.avast.com/en/av_mac_free/11/hns/alert_vulnerable_router.html )
    
    Vulnerability ID: CVE-2015-0932"
    
    My Avast version is 11.18 (46914)
    
    I use Mac OS 10.11.6.
- ElaineM
  NETGEAR Employee Retired
  Nov 03, 2016
  punsk & JohnMcEng
  
  Our engineers were unable to replicate the issue, can you please send us a support package from Avast to further help us diagnose the problem?
  
  Kindly see the steps below on how get the support package.
  
  https://www.avast.com/faq.php?article=AVKB220
  
  Furthermore, please send me a screenshot of the Home Network Security Scan results. Please open Avast --> Reports --> Home Network Security Scan and Open button.
  
  Once you have it, PM the link where I can download it. You can use drobox or any file sharing site in order for me to get the file.
  - punsk
    Aspirant
    Nov 03, 2016
    Thanks. I have sent you a PM with the info.
cyoumans
Aspirant
Nov 10, 2016
I have the same issue -
User input can be executed as a command
The device is vulnerable to hacker attacks. For more info see the corresponding vulnerability ID. An upgrade of the device's software/firmware may fix the issue. Learn more.
Vulnerability ID:
CVE-2015-0932

I've upgraded the firmware and re-ran the scan - same thing.

Carol Y.
- cyoumans
  Aspirant
  Nov 10, 2016
  Did anyone get this issued handled? (Avast Mac Security reports vulnerability on my Nighthawk R7000)
  
  I'm concerned I need to go buy a different router.
  
  Thanks,
  Carol Y
  - ElaineM
    NETGEAR Employee Retired
    Nov 10, 2016
    We do not have any update yet. Our engineers are still trying to replicate this.

Forum Discussion

Avast Mac Security reports vulnerability on my Nighthawk R7000