Start a New Discussion

Start a New Discussion

Orbi WiFi 7 RBE973
Reply

A new bug in R7000?

alokeprasad
Mentor
Mentor
‎2016-12-14 02:10 AM
‎2016-12-14 02:10 AM

A new bug in R7000?

https://www.exploit-db.com/exploits/40898/

Reported Dec 11, 2016

 

Is this different from the security issue #582384 that is all the rage these days?

 

Does this affect other Nighthawk routers?

 

Aloke

PS: I don't own this device.. but I would like to know if it affects my R9000

Model: R7000|Nighthawk AC1900 Dual Band WiFi Router
Message 1 of 8
Labels:
0 Kudos
Reply

Accepted Solutions
JamesGL
Master
Master
‎2016-12-26 08:27 PM
‎2016-12-26 08:27 PM

Re: A new bug in R7000?

Hi,

 

Check this article for more info. If the model of your device is not on the list then it is not affected by the vulnerability.

 

http://kb.netgear.com/000036386/CVE-2016-582384

 

 

View solution in original post

Message 7 of 8
0 Kudos
Reply

All Replies
RMinNJ
Luminary
Luminary
‎2016-12-14 03:02 AM
‎2016-12-14 03:02 AM

Re: A new bug in R7000?

Looks different yes..  

Message 2 of 8
0 Kudos
Reply
ElaineM
NETGEAR Employee Retired
‎2016-12-14 09:23 AM
‎2016-12-14 09:23 AM

Re: A new bug in R7000?

Hello All,

 

I will check this with our engineering team.

 

Thank you!

Message 3 of 8
0 Kudos
Reply
alokeprasad
Mentor
Mentor
‎2016-12-15 03:01 PM
‎2016-12-15 03:01 PM

Re: A new bug in R7000?

What did you find out?  Especially about other models that might be affected?

Model: R7000|Nighthawk AC1900 Dual Band WiFi Router
Message 4 of 8
0 Kudos
Reply
ElaineM
NETGEAR Employee Retired
‎2016-12-15 04:07 PM
‎2016-12-15 04:07 PM

Re: A new bug in R7000?

Our engineers are currently investigating this. 

 

As a reminder, you may send all security vulnerability inquiries directly to security@netgear.com.

Message 5 of 8
0 Kudos
Reply
alokeprasad
Mentor
Mentor
‎2016-12-24 05:43 AM
‎2016-12-24 05:43 AM

Re: A new bug in R7000?

I received this from the "Product Security Incident Response Team" on 12/23/2016:

 

"NETGEAR confirms we received the potential product vulnerability disclosure. Currently we are validating this claim.

The Incident No for this issue is : XXX-XXXX-XXXX. Please use this number in all your communication regarding this disclosure with Netgear."

 

So, stay tuned folks.. especially those w the R7000.  And ask if your router is also affectd (as a lot of the firmwares are based on a common codebase. Unfortunately, it is often an outdated opensource code..)

 

For reference, the details are at https://www.exploit-db.com/exploits/40898/

 

BTW, I have a R9000

Model: R7000|Nighthawk AC1900 Dual Band WiFi Router
Message 6 of 8
0 Kudos
Reply
JamesGL
Master
Master
‎2016-12-26 08:27 PM
‎2016-12-26 08:27 PM

Re: A new bug in R7000?

Hi,

 

Check this article for more info. If the model of your device is not on the list then it is not affected by the vulnerability.

 

http://kb.netgear.com/000036386/CVE-2016-582384

 

 

Message 7 of 8
0 Kudos
Reply
JamesGL
Master
Master
‎2016-12-29 08:29 PM
‎2016-12-29 08:29 PM

Re: A new bug in R7000?

Hi alokeprasad,

 

We’d greatly appreciate hearing your feedback letting us know if you need further assistance.

Message 8 of 8
0 Kudos
Reply
Top Contributors
See All
Discussion stats
  • 7 replies
  • ‎2016-12-14 02:10 AM
  • 3376 views
  • 0 kudos
  • 4 in conversation
Announcements

Orbi WiFi 7