An exploitable firmware modification vulnerability was discovered in certain Netgear products. The data integrity of the uploaded firmware image is ensured with a fixed checksum number. Therefore, an attacker can conduct a MITM attack to modify the user-uploaded firmware image and bypass the checksum verification. This affects WNR612v2 Wireless Routers 1.0.0.3 and earlier, DGN1000v3 Modem Router 1.0.0.22 and earlier, D6100 WiFi DSL Modem Routers 1.0.0.63 and earlier, WNR1000v2 Wireless Routers 1.1.2.60 and earlier, XAVN2001v2 Wireless-N Extenders 0.4.0.7 and earlier, WNR2200 Wireless Routers 1.0.1.102 and earlier, WNR2500 Wireless Routers 1.0.0.34 and earlier, R8900 Smart WiFi Routers 1.0.3.6 and earlier, and R9000 Smart WiFi Routers 1.0.3.6 and earlier.
References
Link | Resource |
---|---|
https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/BkBPIeGco | Exploit Third Party Advisory |
https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/H1lIcXbco | Exploit Third Party Advisory |
https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/HyZRxmb9s | Exploit Third Party Advisory |
https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/S1BNhbWqi | Exploit Third Party Advisory |
https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/S1qWglM5o | Exploit Third Party Advisory |
https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/S1t47Ebqj | Exploit Third Party Advisory |
https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/SJCGkb-9o | Exploit Third Party Advisory |
https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/r1Z4BX-5i | Exploit Third Party Advisory |
https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/ryjVZz-5s | Exploit Third Party Advisory |
https://www.netgear.com/about/security/ | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
Configuration 8 (hide)
AND |
|
Configuration 9 (hide)
AND |
|
History
09 Feb 2023, 21:51
Type | Values Removed | Values Added |
---|---|---|
First Time |
Netgear d6100
Netgear wnr1000v2 Netgear xavn2001v2 Netgear r8900 Netgear dgn1000v3 Firmware Netgear wnr2500 Firmware Netgear Netgear r9000 Firmware Netgear wnr2200 Netgear wnr2200 Firmware Netgear xavn2001v2 Firmware Netgear r8900 Firmware Netgear wnr1000v2 Firmware Netgear wnr612v2 Netgear dgn1000v3 Netgear wnr612v2 Firmware Netgear r9000 Netgear wnr2500 Netgear d6100 Firmware |
|
CWE | CWE-494 | |
References | (MISC) https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/H1lIcXbco - Exploit, Third Party Advisory | |
References | (MISC) https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/r1Z4BX-5i - Exploit, Third Party Advisory | |
References | (MISC) https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/SJCGkb-9o - Exploit, Third Party Advisory | |
References | (MISC) https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/S1t47Ebqj - Exploit, Third Party Advisory | |
References | (MISC) https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/HyZRxmb9s - Exploit, Third Party Advisory | |
References | (MISC) https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/S1qWglM5o - Exploit, Third Party Advisory | |
References | (MISC) https://www.netgear.com/about/security/ - Vendor Advisory | |
References | (MISC) https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/ryjVZz-5s - Exploit, Third Party Advisory | |
References | (MISC) https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/S1BNhbWqi - Exploit, Third Party Advisory | |
References | (MISC) https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/BkBPIeGco - Exploit, Third Party Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.4 |
CPE | cpe:2.3:o:netgear:wnr1000v2_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:netgear:wnr2200_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:netgear:r8900:-:*:*:*:*:*:*:* cpe:2.3:o:netgear:d6100_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:netgear:xavn2001v2:-:*:*:*:*:*:*:* cpe:2.3:h:netgear:wnr1000v2:-:*:*:*:*:*:*:* cpe:2.3:o:netgear:r9000_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:netgear:wnr612v2_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:netgear:dgn1000v3:-:*:*:*:*:*:*:* cpe:2.3:o:netgear:r8900_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:netgear:d6100:-:*:*:*:*:*:*:* cpe:2.3:h:netgear:wnr612v2:-:*:*:*:*:*:*:* cpe:2.3:o:netgear:xavn2001v2_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:netgear:wnr2500_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:netgear:wnr2500:-:*:*:*:*:*:*:* cpe:2.3:h:netgear:wnr2200:-:*:*:*:*:*:*:* cpe:2.3:o:netgear:dgn1000v3_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:netgear:r9000:-:*:*:*:*:*:*:* |
03 Feb 2023, 00:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
02 Feb 2023, 20:20
Type | Values Removed | Values Added |
---|---|---|
Summary | An exploitable firmware modification vulnerability was discovered in certain Netgear products. The data integrity of the uploaded firmware image is ensured with a fixed checksum number. Therefore, an attacker can conduct a MITM attack to modify the user-uploaded firmware image and bypass the checksum verification. This affects WNR612v2 Wireless Routers 1.0.0.3 and earlier, DGN1000v3 Modem Router 1.0.0.22 and earlier, D6100 WiFi DSL Modem Routers 1.0.0.63 and earlier, WNR1000v2 Wireless Routers 1.1.2.60 and earlier, XAVN2001v2 Wireless-N Extenders 0.4.0.7 and earlier, WNR2200 Wireless Routers 1.0.1.102 and earlier, WNR2500 Wireless Routers 1.0.0.34 and earlier, R8900 Smart WiFi Routers 1.0.3.6 and earlier, and R9000 Smart WiFi Routers 1.0.3.6 and earlier. | |
References |
|
02 Feb 2023, 15:17
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-02-02 15:17
Updated : 2023-12-10 14:48
NVD link : CVE-2023-23110
Mitre link : CVE-2023-23110
CVE.ORG link : CVE-2023-23110
JSON object : View
Products Affected
netgear
- dgn1000v3_firmware
- wnr2200
- wnr2200_firmware
- xavn2001v2_firmware
- wnr2500_firmware
- dgn1000v3
- wnr1000v2
- r8900_firmware
- r9000_firmware
- r8900
- wnr612v2_firmware
- d6100_firmware
- wnr2500
- wnr1000v2_firmware
- wnr612v2
- r9000
- xavn2001v2
- d6100
CWE
CWE-494
Download of Code Without Integrity Check