Netgear JWNR2000v2 Buffer Overflow Vulnerability in Default Version Check Function

Vulnerability

A critical buffer overflow vulnerability has been identified in the Netgear JWNR2000v2 router, specifically in version 1.0.0.11. The issue arises in the 'default_version_is_new' function, where improper handling of the 'host' argument allows for remote exploitation. This vulnerability could be exploited by manipulating the input to create a buffer overflow condition, potentially leading to arbitrary code execution or causing the device to crash.

Impact

Exploitation of this vulnerability causes a buffer overflow, which can lead to arbitrary code execution or a denial-of-service condition by crashing the device.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

5.7

impact

7.5

exploitability

4.9

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.7

impact

7.5

exploitability

4.9

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Netgear JWNR2000v2 Buffer Overflow Vulnerability in Default Version Check Function

Vulnerability

Impact

Affected Products

Netgear JWNR2000v2

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating