CVE-2022-37232
Published on: Not Yet Published
Last Modified on: 09/24/2022 02:00:00 AM UTC
Certain versions of Wnr2000v4 from Netgear contain the following vulnerability:
Netgear N300 wireless router wnr2000v4-V1.0.0.70 is vulnerable to Buffer Overflow via uhttpd. There is a stack overflow vulnerability caused by strcpy.
- CVE-2022-37232 has been assigned by
[email protected] to track the vulnerability - currently rated as CRITICAL severity.
CVSS3 Score: 9.8 - CRITICAL
Attack Vector ⓘ |
Attack Complexity |
Privileges Required |
User Interaction |
---|---|---|---|
NETWORK | LOW | NONE | NONE |
Scope | Confidentiality Impact |
Integrity Impact |
Availability Impact |
UNCHANGED | HIGH | HIGH | HIGH |
CVE References
Description | Tags ⓘ | Link |
---|---|---|
Download Center | Support | NETGEAR | www.netgear.com text/html |
![]() |
NETGEAR Product Security | NETGEAR | www.netgear.com text/html |
![]() |
Bug-Report/netgear-n300-0x429cbc.md at main · Davidteeri/Bug-Report · GitHub | github.com text/html |
![]() |
There are currently no QIDs associated with this CVE
Known Affected Configurations (CPE V2.3)
Type | Vendor | Product | Version | Update | Edition | Language |
---|---|---|---|---|---|---|
Hardware
| Netgear | Wnr2000v4 | - | All | All | All |
Operating System | Netgear | Wnr2000v4 Firmware | 1.0.0.70 | All | All | All |
- cpe:2.3:h:netgear:wnr2000v4:-:*:*:*:*:*:*:*:
- cpe:2.3:o:netgear:wnr2000v4_firmware:1.0.0.70:*:*:*:*:*:*:*:
No vendor comments have been submitted for this CVE
Social Mentions
Source | Title | Posted (UTC) |
---|---|---|
![]() |
CVE-2022-37232 : Netgear N300 wireless router wnr2000v4-V1.0.0.70 is vulnerable to Buffer Overflow via uhttpd. Ther… twitter.com/i/web/status/1… | 2022-09-23 01:04:15 |
![]() |
Potentially Critical CVE Detected! CVE-2022-37232 Netgear N300 wireless router wnr2000v4-V1.0.0.70 is vulnerable to… twitter.com/i/web/status/1… | 2022-09-23 01:56:00 |
![]() |
CVE-2022-37232 | 2022-09-23 01:39:04 |