Description

Netgear N300 wireless router wnr2000v4-V1.0.0.70 was discovered to contain a stack overflow via strcpy in uhttpd.

Related CPE's

o

netgear

wnr2000v4_firmware

1.0.0.70

Vulnerable

h

netgear

wnr2000v4

-

References

https://github.com/Davidteeri/Bug-Report/blob/main/netgear-n300-0x4297B4.md

Broken Link

https://www.netgear.com/about/security/

Vendor Advisory

https://www.netgear.com/support/download/?model=WNR2000v4

ProductVendor Advisory

https://github.com/Davidteeri/Bug-Report/blob/main/netgear-n300-0x4297B4.md

Broken Link

https://www.netgear.com/about/security/

Vendor Advisory

https://www.netgear.com/support/download/?model=WNR2000v4

ProductVendor Advisory

Weaknesses

[email protected]

Primary
CWE-787

134c704f-9b21-4f2e-91b3-4a467353bcc0

Secondary
CWE-787

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.8 · Critical

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2022-09-22T20:15:09.573Z

3 years ago

Last modified

2025-05-27T13:15:25.000Z

10 months ago