Netgear has just fixed two critical vulnerabilities identified in its Wi-Fi routers. The breaches concern several references in the Netgear catalog, namely the XR1000, the XR1000v2, the XR500, the CE 206, the CE 220 and the CE 214v2.
According to the American company, the flaws could allow hackers to bypass the authentication process of Wi-Fi routers, without any user interaction. The attack can lead to remote code execution, which opens the door to all kinds of abuse. In short, cybercriminals could install malware and incorporate the router into a botnet, a network of compromised devices. From then on, the device could be involved in a wide variety of criminal operations.
An update to install without delay
As a result, Netgear "strongly recommends" that all affected users update their devices as soon as possible. Below is a list of software versions to install depending on the affected devices:
To install the patch, Netgear suggests you go to its official support site. Search for your model by typing its part number in the search bar and select it as soon as it appears. If you don’t see any results, check your spelling or browse product categories.
Once you’re on your Netgear router’s page, go to the Downloads tab and choose the latest firmware version. Then download the file and follow the instructions in the user manual, release notes, or support page to install.
As reported by our colleagues at Bleeping Computer, this isn’t the first time Netgear has urged its users to urgently install an update. Last summer, the firm had already recommended that its customers update several models of Wi-Fi 6 routers without delay.
Source: Netgear
0 Comments