CVE-2023-23110

moderate-risk

Published 2023-02-02

An exploitable firmware modification vulnerability was discovered in certain Netgear products. The data integrity of the uploaded firmware image is ensured with a fixed checksum number. Therefore, an attacker can conduct a MITM attack to modify the user-uploaded firmware image and bypass the checksum verification. This affects WNR612v2 Wireless Routers 1.0.0.3 and earlier, DGN1000v3 Modem Router 1.0.0.22 and earlier, D6100 WiFi DSL Modem Routers 1.0.0.63 and earlier, WNR1000v2 Wireless Routers 1.1.2.60 and earlier, XAVN2001v2 Wireless-N Extenders 0.4.0.7 and earlier, WNR2200 Wireless Routers 1.0.1.102 and earlier, WNR2500 Wireless Routers 1.0.0.34 and earlier, R8900 Smart WiFi Routers 1.0.3.6 and earlier, and R9000 Smart WiFi Routers 1.0.3.6 and earlier.

Do I need to act?

1.3% chance of exploitation in next 30 days

EPSS score — moderate exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.4/10 High

NETWORK / HIGH complexity

Affected Products (9)

Wnr612V2 Firmware

Dgn1000V3 Firmware

D6100 Firmware

Wnr1000V2 Firmware

Xavn2001V2 Firmware

Wnr2200 Firmware

Wnr2500 Firmware

R8900 Firmware

R9000 Firmware

Affected Vendors

Netgear

References (20)

Exploit https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/BkBPIeGco

Exploit https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/H1lIcXbco

Exploit https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/HyZRxmb9s

Exploit https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/S1BNhbWqi

Exploit https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/S1qWglM5o

Exploit https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/S1t47Ebqj

Exploit https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/SJCGkb-9o

Exploit https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/r1Z4BX-5i

Exploit https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/ryjVZz-5s

Vendor Advisory https://www.netgear.com/about/security/