Trustwave, a leading threat, vulnerability and compliance management company has publicly revealed five new major security holes in certain NETGEAR routers.
Of course, Trustwave and NETGEAR worked behind the scenes to develop new firmware, and the main point of this article is to get NETGEAR router owners to ensure their firmware is updated.
Routers (R) and their modem/router (D) variants affected include (this is not an exhaustive list)
The five vulnerabilities are (not all affect every router):
TWSL2018-002: Password Recovery and File Access
Some routers allow arbitrary file reading from the device provided that the path to file is known. Total of 17 products are affected.
TWSL2018-003: Finding 1: Post-Authentication Command Injection
This one affects six products and reflects a root level OS command execution via the device_name parameter on the lan.cgi page, although the attack requires authentication.
TWSL2018-003: Finding 2: Authentication Bypass