← Back

CVE-2022-27646

nvd nist
Published: Mar 29, 2023Modified: Nov 21, 2024

JSON object

Loading...
8.8
Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 2.8 / Impact: 5.9
Source: NVD

Description

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700v3 1.0.4.120_10.0.91 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the circled daemon. A crafted circleinfo.txt file can trigger an overflow of a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-15879.

Affected (24)

Netgear
24 products
R6400 Firmware
R6700 Firmware
R6900p Firmware
R7000 Firmware
R7000p Firmware
R7850 Firmware
R7960p Firmware
R8000 Firmware
R8000p Firmware
Rax200 Firmware
Rax75 Firmware
Rax80 Firmware
Rs400 Firmware
Cbr40 Firmware
Lbr1020 Firmware
Lbr20 Firmware
Rbr10 Firmware
Rbr20 Firmware
Rbr40 Firmware
Rbr50 Firmware
Rbs10 Firmware
Rbs20 Firmware
Rbs40 Firmware
Rbs50 Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
R6400 Firmware
Before 1.0.4.126
Running on/withPlatform Versions
Netgear
R6400
Version v2
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
R6700 Firmware
Before 1.0.4.126
Running on/withPlatform Versions
Netgear
R6700
Version v3
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
R6900p Firmware
Before 1.3.3.148
Running on/withPlatform Versions
Netgear
R6900p
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
R7000 Firmware
Before 1.0.11.134
Running on/withPlatform Versions
Netgear
R7000
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
R7000p Firmware
Before 1.3.3.148
Running on/withPlatform Versions
Netgear
R7000p
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
R7850 Firmware
Before 1.0.5.84
Running on/withPlatform Versions
Netgear
R7850
All versions
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
R7960p Firmware
Before 1.4.3.88
Running on/withPlatform Versions
Netgear
R7960p
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
R8000 Firmware
Before 1.0.4.84
Running on/withPlatform Versions
Netgear
R8000
All versions
Configuration I
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
R8000p Firmware
Before 1.4.3.88
Running on/withPlatform Versions
Netgear
R8000p
All versions
Configuration J
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rax200 Firmware
Before 1.0.6.138
Running on/withPlatform Versions
Netgear
Rax200
All versions
Configuration K
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rax75 Firmware
Before 1.0.6.138
Running on/withPlatform Versions
Netgear
Rax75
All versions
Configuration L
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rax80 Firmware
Before 1.0.6.138
Running on/withPlatform Versions
Netgear
Rax80
All versions
Configuration M
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rs400 Firmware
Before 1.5.1.86
Running on/withPlatform Versions
Netgear
Rs400
All versions
Configuration N
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Cbr40 Firmware
Before 2.5.0.28
Running on/withPlatform Versions
Netgear
Cbr40
All versions
Configuration O
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Lbr1020 Firmware
Before 2.7.4.2
Running on/withPlatform Versions
Netgear
Lbr1020
All versions
Configuration P
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Lbr20 Firmware
Before 2.7.4.2
Running on/withPlatform Versions
Netgear
Lbr20
All versions
Configuration Q
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rbr10 Firmware
Before 2.7.4.24
Running on/withPlatform Versions
Netgear
Rbr10
All versions
Configuration R
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rbr20 Firmware
Before 2.7.4.24
Running on/withPlatform Versions
Netgear
Rbr20
All versions
Configuration S
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rbr40 Firmware
Before 2.7.4.24
Running on/withPlatform Versions
Netgear
Rbr40
All versions
Configuration T
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rbr50 Firmware
Before 2.7.4.24
Running on/withPlatform Versions
Netgear
Rbr50
All versions
Configuration U
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rbs10 Firmware
Before 2.7.4.24
Running on/withPlatform Versions
Netgear
Rbs10
All versions
Configuration V
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rbs20 Firmware
Before 2.7.4.24
Running on/withPlatform Versions
Netgear
Rbs20
All versions
Configuration W
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rbs40 Firmware
Before 2.7.4.24
Running on/withPlatform Versions
Netgear
Rbs40
All versions
Configuration X
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rbs50 Firmware
Before 2.7.4.24
Running on/withPlatform Versions
Netgear
Rbs50
All versions

Related CWEs

CWE-121
Stack-based Buffer Overflow
A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).

References (4)

Source: zdi-disclosures@trendmicro.com
Vendor Advisory
Source: zdi-disclosures@trendmicro.com
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry

Timeline

No history available yet.