Intrusion Prevention

NETGEAR.WebServer.Module.Command.Injection

Description

This indicates detection of an Improper Authentication vulnerability in Netgear Devices.
The vulnerability is due to lack of authentication for some critical modules. Remote attackers can exploit this vulnerability to inject malicious commands on the affected devices.

Affected Products

Following devices are affected:
R6200
R6250
R6400
R6700
R6900
R7000
R7100LG
R7300
R7900,
R8000
D6220
D6400
D7000

Impact

System Compromise: Remote attackers can gain control of vulnerable systems

Recommended Actions

Currently we are unaware of any vendor supplied patch or updates available for this issue.

CVE References

CVE-2016-6277

Other References

582384