Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-4390

A network misconfiguration is present in versions prior to 1.0.9.90 of the NETGEAR RAX30 AX2400 series of routers. IPv6 is enabled for the WAN interface by default on these devices. While there are firewall restrictions in place that define access restrictions for IPv4 traffic, these restrictions do not appear to be applied to the WAN interface for IPv6. This allows arbitrary access to any services running on the device that may be inadvertently listening via IPv6, such as the SSH and Telnet servers spawned on ports 22 and 23 by default. This misconfiguration could allow an attacker to interact with services only intended to be accessible by clients on the local network.

Published

2022-12-09T20:15:10.863

Last Modified

2025-04-14T18:15:26.737

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 10.0 (CRITICAL)

Weaknesses

Type: Primary
NVD-CWE-Other

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	netgear	ax2400_firmware	< 1.0.9.90	Yes
Hardware	netgear	ax2400	-	No

References

https://www.synacktiv.com/en/publications/cool-vulns-dont-live-long-netgear-and-pwn2own.html Exploit, Patch, Third Party Advisory ([email protected])
https://www.tenable.com/security/research/tra-2022-36%2C ([email protected])
https://www.synacktiv.com/en/publications/cool-vulns-dont-live-long-netgear-and-pwn2own.html Exploit, Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.tenable.com/security/research/tra-2022-36%2C (af854a3a-2127-422b-91ae-364da2661108)