Select Page

Netgear users advised to stop using affected routers after severe flaw found

An advisory posted on Friday in Carnegie Mellon University’s public vulnerability database (CERT) said that Netgear’s R7000 and R6400 routers, running current and recent firmware respectively, are vulnerable to an arbitrary command injection flaw.

If exploited, the vulnerability could let an unauthenticated attacker run commands with root privileges.

The code to exploit the vulnerability — effectively just a URL — has been released publicly, allowing anyone to carry out attacks.