Summary
New security vulnerabilities with a severity of “High” have been discovered affecting Netgear’s XR1000 and XR1000v2 devices. These vulnerabilities could allow the execution of arbitrary commands and access to sensitive information on the target devices.
Risk
Vulnerability community impact estimate: HIGH/ORANGE (69.48/100)1.
Type
- Arbitrary Code Execution
- Information Disclosure
Affected Products and Versions
Netgear
- XR1000, versions prior to 1.0.0.74
- XR1000v2, versions prior to 1.1.1.22
Mitigation Actions
In line with vendor statements, it is recommended to update your products by following the instructions available at the links provided in the References section.
References
1This estimate is made taking into account several parameters, including: CVSS, availability of patches/workarounds and PoC, diffusion of the affected software/devices in the reference community.
