- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
Can't find latest CBR40 Firmware as Described in Security Bulletin
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Security bullitens list this info:
NETGEAR has released fixes or hotfixes for an unauthenticated command injection security vulnerability on the following product models:
- CBR40, running firmware versions prior to 2.6.1.38
But on the download page only this is listed:
Firmware and Software Downloads
- Current Versions
- CBR40 Firmware Version 2.5.0.14
Where do I go to find the latest release?
Even weirder: the RBS20 firmware (2.6.2.104) they have that is supposed to fix this hole is not compatible with my RBS20. Too funny.
Top Support Articles
- EU Declarations of Conformity
- RBR20 / RBS20 Firmware Version 2.6.2.104
Solved! Go to Solution.
Accepted Solutions
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
All Replies
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Re: Can't find latest CBR40 Firmware as Described in Security Bulletin
Where do you find this information?
Nothing posted yet on NG download site:
https://www.netgear.com/support/product/CBK40.aspx#download
Something to contact NG support about and see.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Re: Can't find latest CBR40 Firmware as Described in Security Bulletin
The RBS20 firmware link that my slave says is incompatible is at:
https://www.netgear.com/support/product/RBS20.aspx#download
- EU Declarations of Conformity
- RBR20 / RBS20 Firmware Version 2.6.2.104 <=====
- Which security features does my Orbi WiFi System support?
- Security Advisory for Security Misconfiguration on Some Routers, Range Extenders, and Orbi WiFi Syst...
- Security Advisory for Unauthenticated Command Injection Vulnerability on Some Extenders and Orbi WiF...
- Security Advisory for Stored Cross Site Scripting on Some Routers and Orbi WiFi Systems, PSV-2018-05...
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Re: Can't find latest CBR40 Firmware as Described in Security Bulletin
You need to use what is avialable from the CBK site:
https://www.netgear.com/support/product/CBK40.aspx#download
Untill NG makes it compatible with the CBR40.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Re: Can't find latest CBR40 Firmware as Described in Security Bulletin
What this is telling me is that the CBK40/CBR40 have not received updates, and that this vulnerability remains for the CBK40/CBR40 products. Not exactly comforting to know there is a known 8.5+ ranked hack that your gear is subject to.
As for contacting support, what you probably already know, they do not talk with owners after 90 days from purchase unless you have paid for an expensive support plan.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
• What is the difference between WiFi 6 and WiFi 7?
• Yes! WiFi 7 is backwards compatible with other Wifi devices? Learn more