CVE-2022-38956

low-risk
Published 2022-09-20

An exploitable firmware downgrade vulnerability was discovered on the Netgear WPN824EXT WiFi Range Extender. An attacker can conduct a MITM attack to replace the user-uploaded firmware image with an original old firmware image. This affects Firmware 1.1.1_1.1.9 and earlier.

Do I need to act?

-
0.15% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
5
CVSS 5.3/10 Medium
NETWORK / HIGH complexity

Affected Products (1)

Wpn824Ext Firmware

Affected Vendors

Netgear

References (4)

https://hackmd.io/%40eupX2KdkT6iNpqJUWk9p4A/SyAnOSd1s
Vendor Advisory https://www.netgear.com/about/security/
https://hackmd.io/%40eupX2KdkT6iNpqJUWk9p4A/SyAnOSd1s
Vendor Advisory https://www.netgear.com/about/security/
23
/ 100
low-risk
Severity 17/34 · Moderate
Exploitability 1/34 · Minimal
Exposure 5/34 · Minimal