NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

Megarock's avatar
Megarock
Tutor
Mar 26, 2018
Solved

Avast Vulnerability Catalogue ID CVE-2017-14491 for the Nighthawk R7000 ac1900 dualband wifi router

                       I have got this report from Avast and Bitdefender after scanning my network and i have the latest firmware for my router. Any ideas if Netgear is working on a firmware update f...
Firmware
Security
Squair's avatar
Squair
Guide
May 24, 2018

Hi,

Also having the DNS issue - port 53 - CVE-2017-14491 Vulnerablity. I did the nslookup and found my dnsmasq at 2.75. Avast says I'm in danger. 

 

Thanks

  • schumaku's avatar
    schumaku
    Guru
    May 25, 2018
    Squair wrote:

    Hi,

    Also having the DNS issue - port 53 - CVE-2017-14491 Vulnerablity. I did the nslookup and found my dnsmasq at 2.75. Avast says I'm in danger. 

    R6900P?
    Firmware version?

     

    If there is a 2.75 in place it's not updated, and Avast is right ...

     

    dnsmasq starting from 2.78 is not vulnerable to CVE-2017-14491. Only CVE-2017-15107 (plus some other security enhancements) apply and  are fixed in 2.79 FMI: http://www.thekelleys.org.uk/dnsmasq/CHANGELOG

     

     ChristineT please - all firmware require an update to dnsmasq 2.79 (or newer) - the current 2.78 is no longer sufficient. And the default config should remove the non-documented and unsupported config option to query all DNS, too. Why does that all take that long?

    • Squair's avatar
      Squair
      Guide
      May 30, 2018

      My FW is v1.3.1.26_10.1.3 (no update available)

      App= NIGHTHAWK 2.1.3.325

       

      Why the Avast error? We are hearing the FBI tell us to reset our routers! 

       

      Have a good day. Thanks.

      • schumaku's avatar
        schumaku
        Guru
        May 31, 2018
        Squair wrote:

        My FW is v1.3.1.26_10.1.3 (no update available) Why the Avast error?  

         

        Because Avast does report a potential vulnerability/vulnerabilities which exist in the dnsmasq code on this old firmware. Because of Netgear was (and is to some extent) still lazy updating components in time and taking much more time to release firmware for all Netgear models.

         

        Squair wrote:

         

        We are hearing the FBI tell us to reset our routers!  

        Well, here we have even less information from Netgear. The information from Netgear available is very vague. Can't tell you more but that other vendors which were notified have updated their code in time early June 2017 already (and have supplied removal processes for effectively affected devices). 

        No idea on how long this will take for your router model.

         

        PaddyO wrote:

        Mine is 2.62 how do i upgrade?

        R8000 - there is a firmware update available for a few days R8000 Firmware Version 1.0.4.18 - check the R8000 Support Downloads for later updates.