Netgear warns users to patch critical WiFi router vulnerabilities

Netgear has issued an urgent security update for six of its popular WiFi home gateways, including three Nighthawk Pro gaming routers, after researchers uncovered severe Remote Code Execution (RCE) vulnerabilities. These flaws, which allow attackers to run arbitrary code on the devices without authentication, have been patched - but users must manually update their firmware to stay protected.

The security flaws impact multiple WiFi 6 access points (WAX206, WAX214v2, and WAX220) and Nighthawk Pro Gaming router models (XR1000, XR1000v2, XR500).

The vulnerabilities have been rated 9.8 on the CVSS severity scale, meaning they're about as critical as security exploits can get. If left unpatched, these flaws give hackers free rein over your router, letting them execute unsigned code remotely. This could mean anything from hijacking your network traffic to enlisting your router in a botnet for large-scale cyberattacks. Since Netgear's affected routers and gateways won't update on their own, it's absolutely essential for users to install the latest firmware as soon as possible.

In July, Netgear also urged customers to update to the latest firmware immediately to patch stored cross-site scripting (XSS) and authentication bypass vulnerabilities impacting several WiFi 6 router models.

One month earlier, security researchers disclosed six flaws of varying severity levels in Netgear WNR614 N300, an end-of-life router popular among home users and small businesses.

Read more -here-

• Waymo partners with Toyota to bring robotaxis to everyone
• Meta launches standalone AI app rivaling OpenAI's ChatGPT
• US FCC to review spectrum sharing rules to boost space-based telecom
• Google is dropping support for its oldest Nest Learning Thermostats
• Razer has a vertical mouse now
• Amazon’s Starlink competitor runs into production delays