
Netgear has released urgent firmware updates to address two critical security vulnerabilities affecting several of its WiFi 6 access points and Nighthawk Pro Gaming router models. The flaws pose significant risks as they can be exploited by unauthorized attackers for remote code execution (PSV-2023-0039) and authentication bypass (PSV-2021-0117) without user interaction.
Affected Models and Patch Versions:
– XR1000: Update to version 1.0.0.74
– XR1000v2: Update to version 1.1.0.22
– XR500: Update to version 2.3.2.134
– WAX206: Update to version 1.0.5.3
– WAX220: Update to version 1.0.5.3
– WAX214v2: Update to version 1.0.2.5
To Update Your Router:
1. Visit NETGEAR Support
2. Search for your model number
3. Access Downloads section
4. Select latest Firmware Version
5. Follow Release Notes instructions
Netgear emphasizes the importance of immediate firmware updates, warning that devices remain vulnerable until all recommended steps are completed. This security update follows previous patches released in July addressing XSS and authentication bypass vulnerabilities in other WiFi 6 router models.
Users are strongly advised to update their devices promptly to maintain network security and prevent potential exploitation of these vulnerabilities.