CVE-2022-44186

Netgear R7000P V1.3.1.64 is vulnerable to Buffer Overflow in /usr/sbin/httpd via parameter wan_dns1_pri.
References
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:netgear:r7000p_firmware:1.3.1.64:*:*:*:*:*:*:*
cpe:2.3:h:netgear:r7000p:-:*:*:*:*:*:*:*

History

23 Nov 2022, 19:08

Type Values Removed Values Added
CWE CWE-787
First Time Netgear
Netgear r7000p Firmware
Netgear r7000p
CPE cpe:2.3:o:netgear:r7000p_firmware:1.3.1.64:*:*:*:*:*:*:*
cpe:2.3:h:netgear:r7000p:-:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 9.8
References (MISC) https://www.netgear.com/about/security/ - (MISC) https://www.netgear.com/about/security/ - Vendor Advisory
References (MISC) https://github.com/RobinWang825/IoT_vuln/tree/main/Netgear/R7000P/4 - (MISC) https://github.com/RobinWang825/IoT_vuln/tree/main/Netgear/R7000P/4 - Exploit, Third Party Advisory

22 Nov 2022, 14:33

Type Values Removed Values Added
New CVE

Information

Published : 2022-11-22 14:15

Updated : 2023-12-10 14:48


NVD link : CVE-2022-44186

Mitre link : CVE-2022-44186

CVE.ORG link : CVE-2022-44186


JSON object : View

Products Affected

netgear

  • r7000p_firmware
  • r7000p
CWE
CWE-787

Out-of-bounds Write