In Netgear Orbi RBR750 firmware before V7.2.6.21, there is a stack-based buffer overflow in /usr/sbin/httpd.
The vulnerability (CWE-787: Out-of-bounds Write) is located in the /usr/sbin/httpd binary file that handles the router's web interface. An attacker can send a specially crafted HTTP request that causes data to be written outside the boundaries of a buffer on the stack. Stack overflow can lead to overwriting a function's return address and redirecting code execution to an attacker-controlled payload.
Successful exploitation of this vulnerability allows an attacker to execute arbitrary code remotely (RCE) on the device with the privileges of the httpd process, which in practice may mean complete takeover of the router — violation of confidentiality, integrity, and system availability.
Update the firmware of the Netgear Orbi RBR750 device to version V7.2.6.21 or newer. The update can be downloaded from the manufacturer's website. Until the update is applied, it is recommended to restrict access to the router's administrative interface only to trusted IP addresses and to disable remote management over the WAN network.
Netgear Orbi RBR750 with firmware versions earlier than V7.2.6.21
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HNetgear Rbr750
HWNetgearwszystkie wersjeNetgear Rbr750 Firmware
OSNetgear< 7.2.6.21
Related vulnerabilities
Certain NETGEAR devices are affected by authentication bypass. This affects CBR750 before 4.6.3.6, RBK752 befo...
Certain NETGEAR devices are affected by authentication bypass. This affects CBR750 before 4.6.3.6, RBK752 befo...
Certain NETGEAR devices are affected by authentication bypass. This affects CBR750 before 4.6.3.6, RBK752 befo...
Certain NETGEAR devices are affected by authentication bypass. This affects CBR750 before 4.6.3.6, RBK752 befo...
Certain NETGEAR devices are affected by authentication bypass. This affects CBR40 before 2.5.0.24, CBR750 befo...