CVE-2022-47208

Published: Dec 16, 2022

Modified: Apr 17, 2025

PUBLISHED

Description

The “puhttpsniff” service, which runs by default, is susceptible to command injection due to improperly sanitized user input. An unauthenticated attacker on the same network segment as the router can execute arbitrary commands on the device without authentication.

Vendor	Product	Versions
n/a	NETGEAR Nighthawk WiFi6 Router	affected `NETGEAR Nighthawk WiFi6 Router prior to V1.0.9.90`

References

https://www.tenable.com/security/research/tra-2022-37

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-47208

Description

Affected Products

References