There is an unpatched vulnerability in these that allows remote command injection, and public exploit code for said vulnerability. Full details at https://www.kb.cert.org/vuls/id/582384Confirmed to be an issue on the R6400/R7000 models, but as per the CERT entry at least one firmware revision of the R8000 is vulnerable according to community reports and other Netgear routers may be vulnerable.
↧