CVE-2022-46424

Published: Dec 20, 2022

Modified: Apr 16, 2025

PUBLISHED

Description

An exploitable firmware modification vulnerability was discovered on the Netgear XWN5001 Powerline 500 WiFi Access Point. An attacker can conduct a MITM (Man-in-the-Middle) attack to modify the user-uploaded firmware image and bypass the CRC check, allowing attackers to execute arbitrary code or cause a Denial of Service (DoS). This affects v0.4.1.1 and earlier.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://www.netgear.com/about/security/

https://hackmd.io/%40slASVrz_SrW7NQCsunofeA/B1rKQuzDj

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-46424

Description

Affected Products

References