NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
Vulnerability Summary for CVE-2017-5521
If you purchase this router, flash it to open source firmware, or get the latest update from Netgear ASAP. Another security issue was found with several routers, but older firmware:
http://thehackernews.com/2017/01/Netgear-router-password-hacking.html
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-5521
Below is the article that tackles the vulnerability.
Web GUI Password Recovery and Exposure Security Vulnerability
5 Replies
Below is the article that tackles the vulnerability.
Web GUI Password Recovery and Exposure Security Vulnerability
If the firmware installation process describer in Netgear's knowledge base 000036749 is interrupted, then will the router be bricked, or is there a recovery procedure? If there is no recovery procedure, then do the update at a time where, if the procedure fails, you have time to get a new router before you need the internet for something critical. Also, is version 1.0.4.8 the latest version?
Mitre says that this is the latest known vulnerability. www.cve.mitre.org
jeffsilverman wrote:
Also, is version 1.0.4.8 the latest version?
What router do you have?
jeffsilverman wrote:
If the firmware installation process describer in Netgear's knowledge base 000036749 is interrupted, then will the router be bricked, or is there a recovery procedure?
There are a couple things you can try, including reinstalling firmware with tftp. I haven't experienced this, so I don't know whe odds of success. If you needed to get a new router ASAP, you'd probably need to buy one.
