You should update your Netgear Orbi router now and check for more patches soon

TechSpot is about to celebrate its 25th anniversary. TechSpot means tech analysis and advice you can trust.

Security Alert: Routers can be an easily forgotten security risk because users don’t directly interact with them every day despite their central role in networking. A newly publicized set of vulnerabilities present the latest of multiple security incidents that have recently hit routers, particularly those from Netgear.

Security researchers at Cisco Talos have published four vulnerabilities affecting Netgear Orbi mesh wireless systems. The device’s latest firmware resolves three of the issues, but the fourth remains a threat, so users should keep checking for further updates.

Three of the exploits, including the unresolved one, affect the main Orbi router. A fourth impacts the satellites that extend the router’s WiFi signal range when installed in large buildings. Talos highlights the Orbi Satellite RBS750 as a specific affected model, while Netgear lists that device along with several others.

The satellite vulnerability, designated TALOS-2022-1596 (CVE-2022-37337), allows arbitrary command execution if an attacker sends a specific HTTP request. Two other vulnerabilities allow an attacker to execute arbitrary code in the main router through different means.

TALOS-2022-1595 (CVE-2022-38452) requires a custom-tailored network request, while TALOS-2022-1597 (CVE-2022-36429) works through a JSON object. Finally, TALOS-2022-1598 (CVE-2022-38458) lets a hacker perform a man-in-the-middle attack to get sensitive information from the main router’s Web Services Management tool.

Updating the firmware should protect against issues 1596, 1597, and 1598. However, Netgear has yet to resolve 1595 – the main router vulnerability involving the network request.

Netgear says the resolved exploits, which it details under different names from Talos’ warning, require a hacker to either log into the WiFi network or have physical ethernet access. This means attackers can only use the vulnerabilities wirelessly with the network password or through an unsecured network. Furthermore, the command execution issues require admin credentials, meaning a malicious actor would have to log into the router’s control panel.

To download the latest firmware, head to the company’s support page and search for your router’s model number. Then, select Downloads > Current Versions, and select the first item with “Firmware Version” in the title. Click “Release Notes” and follow the instructions from there.

Users should also check Netgear’s main security update page, which contains many other advisories detailing vulnerabilities in other products from this month. Over two dozen alerts appeared on December 28 alone, so those who haven’t upgraded their Netgear router’s firmware at all in 2023 should do so ASAP.

Read More
Joan Roberie

Latest

Berita celebrates milestone as ‘Namhlanje’ turns two months old

Music Celebrities Published on May 20, 2026 Berita is celebrating her...

What is a DAC? How to get better Lossless Audio on iPhone and Mac

Music Image: FoundryOliver Schusser, Apple’s Vice President in charge...

Nick Jonas Reveals Whether Daughter Malti Will Follow in His Musical Footsteps

Music About UsSubscribeContact UsFAQCareersClosed CaptioningWatch Full EpisodesSitemapE! International TV...

Newsletter

Don't miss

Berita celebrates milestone as ‘Namhlanje’ turns two months old

Music Celebrities Published on May 20, 2026 Berita is celebrating her...

What is a DAC? How to get better Lossless Audio on iPhone and Mac

Music Image: FoundryOliver Schusser, Apple’s Vice President in charge...

Nick Jonas Reveals Whether Daughter Malti Will Follow in His Musical Footsteps

Music About UsSubscribeContact UsFAQCareersClosed CaptioningWatch Full EpisodesSitemapE! International TV...

Global musicians go east as China becomes a major touring destination

MusicChina Entertainment News: Global musicians go east as...

Business seminar in Munich highlights Hong Kong’s strategic roles amidst global shifts (with photos)

Business seminar in Munich highlights Hong Kong's strategic roles amidst global shifts (with photos) ******************************************************************************************      The Hong Kong Economic and Trade Office, Berlin (HKETO Berlin), promoted Hong Kong's unique advantages and strategic roles at the seminar "Hong Kong's strategic role amidst geopolitical tensions" on June 18 (Munich time) in Munich, Germany.             Senior executives, investors

AI for business services: From job fears to productivity

AI for business services: From job fears to productivity

Business Insurance-AZ Achieves Record Response Times for 2026 Arizona Construction Bids

Business Insurance-AZ achieves milestone response speeds for commercial construction bids across Arizona, accelerating documentation delivery to keep local projects moving forward without delay. Phoenix, AZ, June 06-2026, ZEX PR WIRE — Business Insurance-AZ has achieved record-breaking processing speeds and response times for commercial construction bids throughout Arizona, directly supporting the state’s massive infrastructure and advanced manufacturing boom