Published: 02/02/2023 Updated: 09/02/2023

CVSS v3 Base Score: 7.4 | Impact Score: 5.2 | Exploitability Score: 2.2

VMScore: 0

An exploitable firmware modification vulnerability exists in certain Netgear products. The data integrity of the uploaded firmware image is ensured with a fixed checksum number. Therefore, an attacker can conduct a MITM attack to modify the user-uploaded firmware image and bypass the checksum verification. This affects WNR612v2 Wireless Routers 1.0.0.3 and previous versions, DGN1000v3 Modem Router 1.0.0.22 and previous versions, D6100 WiFi DSL Modem Routers 1.0.0.63 and previous versions, WNR1000v2 Wireless Routers 1.1.2.60 and previous versions, XAVN2001v2 Wireless-N Extenders 0.4.0.7 and previous versions, WNR2200 Wireless Routers 1.0.1.102 and previous versions, WNR2500 Wireless Routers 1.0.0.34 and previous versions, R8900 Smart WiFi Routers 1.0.3.6 and previous versions, and R9000 Smart WiFi Routers 1.0.3.6 and previous versions.

Vulnerable Product	Search on Vulmon	Subscribe to Product
netgear wnr612v2_firmware
netgear dgn1000v3_firmware
netgear d6100_firmware
netgear wnr1000v2_firmware
netgear xavn2001v2_firmware
netgear wnr2200_firmware
netgear wnr2500_firmware
netgear r8900_firmware
netgear r9000_firmware

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2023-23110

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect