Tenable has discovered a vulnerability in a new NETGEAR router. The popular WiFi 6 router is known for its large area coverage and is also used by micro-businesses. The router can be reached from the outside with an old firmware via IPv6.
Tenable's ZeroDay research team found a network misconfiguration in the NETGEAR Nighthawk WiFi6 Router (RAX30 AX2400) working with firmware up to v1.0.7.78. The new update with firmware V1.0.9.90 fixes the security problem.
External attack via IPv6 possible
The bug inadvertently allowed unrestricted communication with all services listening over IPv6 on the device's WAN (internet-facing) port. This misconfiguration allows arbitrary access to any services running on the device and could potentially allow attackers to communicate with these devices from the Internet as if they were on the consumer's local network.
NETGEAR has released a patch about its auto-update feature. However, if the router is still working with firmware V1.0.6.74, then the automatic update function of the device does not seem to recognize that updates beyond V1.0.6.74 are available. Those consumers who rely on these devices' automatic update or "check for updates" mechanisms remain vulnerable to this issue, unless they manually apply the new patch.
More at Tenable.com
About Tenable Tenable is a Cyber Exposure company. Over 24.000 companies worldwide trust Tenable to understand and reduce cyber risk. Nessus inventors have combined their vulnerability expertise in Tenable.io, delivering the industry's first platform that provides real-time visibility into and secures any asset on any computing platform. Tenable's customer base includes 53 percent of the Fortune 500, 29 percent of the Global 2000, and large government agencies.