@UKTechHub
.
.

Netgear warns users to patch auth bypass for XR1000 Nighthawk Netgear warned customers to update their devices to the latest available firmware, which patches stored cross-site scripting (XSS) and authentication bypass vulnerabilities in several WiFi 6 router models. The stored…

UKTH forums 🛜 Wireless Routers & Modems NetGear & Wireless Netgear warns users to patch auth bypass for XR1000 Nighthawk Netgear warned customers to update their devices to the latest available firmware, which patches stored cross-site scripting (XSS) and authentication bypass vulnerabilities in several WiFi 6 router models. The stored...

Viewing 1 post (of 1 total)
  • Author
    Posts
  • #32797
    UK SentinelUK Sentinel
    Keymaster
    • Replies 8,604
    • The Skipper

    Netgear warned customers to update their devices to the latest available firmware, which patches stored cross-site scripting (XSS) and authentication bypass vulnerabilities in several WiFi 6 router models.

    The stored XSS security flaw (fixed in firmware version 1.0.0.72 and tracked as PSV-2023-0122) impacts the XR1000 Nighthawk gaming router.

    While the company didn’t disclose any details regarding this bug, successful attacks exploiting such weaknesses can let threat actors hijack user sessions, redirect users to malicious sites or display fake login forms, and steal restricted information.

    Source:

    https://www.bleepingcomputer.com/news/security/netgear-warns-users-to-patch-authentication-bypass-xss-router-flaws/

    In a completely sane world, madness is the only freedom (J.G.Ballard).

Viewing 1 post (of 1 total)
  • You must be logged in to reply to this topic.
Latest Posts