Vulnerable to NetUSB hack? AC2600 R7450

Question

SentinelOne published a report detailing a NetUSB vulnerability in Kcode's firmware software that allows hackers to take over a router from the WAN via port 20005.

https://www.sentinelone.com/labs/cve-2021-45608-netusb-rce-flaw-in-millions-of-end-user-routers/

Will NETGEAR be releasing update firmware to fix this bug?

How can I close port 20005? (and please don't reply that it is essential for proper functioning... this port should never have been available over the Internet, and it has a stack overflow that opens the router to complete takeover.)

FURRYe38 · Answer

So have to tested this on your router?&nbsp;
How do you know if yours is effected?&nbsp;
https://kb.netgear.com/000064437/Security-Advisory-for-Pre-Authentication-Buffer-Overflow-on-Multiple-Products-PSV-2021-0278

HomeUserIA · Answer

Test with&nbsp;GRC&nbsp;|&nbsp;ShieldsUP! — Single Port Probe&nbsp;from within your network.&nbsp;R8500 firmware 1.0.2.156 (from December 2021) predates this vulnerability, and unfortunately seems to cause DHCP to sporadically fail - creating problems with pretty much every web site.&nbsp;Echoing the query to&nbsp;netgear - is there an updating about to be released?&nbsp;

Forum Discussion

Vulnerable to NetUSB hack? AC2600 R7450

2 Replies