Netgear Users Advised by CERT to Stop Using These Routers Due to Critical Security Flaw

Advertisement
By Sanket Vijayasarathy | Updated: 12 December 2016 18:26 IST
Highlights
  • Netgear routers R7000, R6400, and R8000 affected
  • Flaw is trivial unless user is tricked into accessing a URL
  • Vulnerability is known as command injection
Netgear Users Advised by CERT to Stop Using These Routers Due to Critical Security Flaw

The United States Computer Emergency Readiness Team (US-CERT) issued a warning stating that two of Netgear's routers - R7000 and R6400 - are potentially vulnerable due to a critical security flaw. CERT has warned users of these routers to discontinue their use until the flaw is fixed.

According to CERT's statement, the flaw is not dangerous unless the router owner is tricked into accessing a URL, which has been released publicly. An attacker can hide an exploit in a shortened URL, increasing the chance of tricking a user into opening the link.

On opening the link, the Netgear routers process the URL and the command is executed by the router. This vulnerability is known as command injection. An attacker can inject any command which is then executed by the system.

"The CERT/CC is currently unaware of a practical solution to this problem and recommends the following workaround," CERT said.

Advertisement

While the flaw has so far only been found in two of Netgear's routers running current or older firmware versions, CERT says that other routers may also be affected. Netgear on Sunday stated that it was aware of the vulnerability and also added R8000 to the list of vulnerable routers.

Router flaws have increasingly been susceptible to attackers. In September, F-Secure researchers discovered a critical vulnerability in some models of Inteno home routers, which, if exploited, could give an attacker complete control over the victim's device and any other devices connected to it.

Advertisement

Earlier in December, a cyber-attack on Britain's TalkTalk Telecom broadband using Mirai malware affected a number of customer routers. Additionally, Mirai was also used in October to cut off access to some of the world's best known websites, including Twitter and Spotify.

 

For the latest tech news and reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.

Advertisement

Related Stories

Popular Mobile Brands
  1. iPhone 17 Pro, iPhone 17 Pro Max Alleged Geekbench Listing Leaked
  2. Nothing Phone 3 to Be Manufactured in India, Company Reveals Model Number
  3. Poco F7 Spotted on Geekbench With Snapdragon 8s Gen 4, 12GB of RAM
  4. Top Smartphones Under Rs 30,000 in India (June 2025): Check List
  5. Samsung May Launch Two New Earbuds; Spotted on Galaxy Buds Controller App
  6. OnePlus Nord 5 Allegedly Spotted on Geekbench With This Chipset
  7. Realme 15 Pro Tipped to Launch in India in These Colour Options
  8. Microsoft 365 Copilot Could Be Hacked Without Any User Input: Research
  9. OnePlus 13s Sale Starts Today in India: Check Price and Offers
  1. Microsoft 365 Copilot Vulnerable to Zero-Click EchoLeak Exploit, Cybersecurity Researchers Say
  2. Samsung Rolls Out One UI 8 Beta 2 Update for Galaxy S25 Series in Select Countries
  3. Amazon Prime Video Now Shows Twice As Much Ads As Before: Report
  4. iPhone 17 Pro Series Allegedly Listed on Geekbench; Scores Higher Than Snapdragon 8 Elite SoC
  5. Samsung Galaxy Buds Core, Buds 3 FE Surface in Galaxy Buds Controller App: Report
  6. OnePlus 13 to Be Used for All BGMI Matches at Upcoming BGMS 2025 Tournament
  7. Sony Announces Limited-Period Discount on Audio Products in India for World Music Day
  8. Brazil's Top Court Votes to Hold Social Media Platforms Accountable for User Posts
  9. Nintendo Switch 2 Closer to Xbox Series S Than PS4 in Power, Says Koei Tecmo
  10. Nothing Phone 3 to Be Manufactured in India, Company Reveals Portion of Rear Panel With Model Number
Gadgets 360 is available in
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2025. All rights reserved.