Primary

Context

Netgear JWNR2000v2 Buffer Overflow Vulnerability in check_language_file Function

Vulnerability

A critical buffer overflow vulnerability has been identified in the Netgear JWNR2000v2 router, specifically in version 1.0.0.11. The issue arises in the check_language_file function, where improper handling of the 'host' argument allows for remote exploitation. This vulnerability could potentially be exploited to execute arbitrary code on the device.

Impact

Exploitation of this vulnerability leads to a buffer overflow, which can commonly be used to execute arbitrary code or cause a denial-of-service condition on the affected device.

Reproduction

The vulnerability can be reproduced by sending a crafted request to the router's web interface that includes a malicious 'host' argument. This can be done using a web browser or a tool like curl or Postman. The router will need to be running the vulnerable firmware version 1.0.0.11.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

5.7

impact

7.5

exploitability

5.2

remediation

0.0

relevance

0.0

threat

1.6

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.7

impact

7.5

exploitability

5.2

remediation

0.0

relevance

0.0

threat

1.6

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Netgear JWNR2000v2 Buffer Overflow Vulnerability in check_language_file Function

Vulnerability

Impact

Reproduction

Affected Products

Netgear JWNR2000v2

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating