Description

Netgear N300 wireless router wnr2000v4-V1.0.0.70 was discovered to contain a stack overflow via strcpy in uhttpd.

Related CPE's

o

netgear

wnr2000v4_firmware

1.0.0.70

Vulnerable

h

netgear

wnr2000v4

-

References

https://github.com/Davidteeri/Bug-Report/blob/main/netgear-n300-0x4297B4.md

Broken Link

https://www.netgear.com/about/security/

Vendor Advisory

https://www.netgear.com/support/download/?model=WNR2000v4

ProductVendor Advisory

Weaknesses

[email protected]

Primary
CWE-787

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.8 · Critical

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2022-09-22T22:15:09.573

2 years ago

Last modified

2022-09-24T02:31:54.780

2 years ago