{"id":622502,"date":"2023-03-27T09:49:24","date_gmt":"2023-03-27T14:49:24","guid":{"rendered":"https:\/\/news.sellorbuyhomefast.com\/index.php\/2023\/03\/27\/you-should-update-your-netgear-orbi-router-now-and-check-for-more-patches-soon\/"},"modified":"2023-03-27T09:49:24","modified_gmt":"2023-03-27T14:49:24","slug":"you-should-update-your-netgear-orbi-router-now-and-check-for-more-patches-soon","status":"publish","type":"post","link":"https:\/\/newsycanuse.com\/index.php\/2023\/03\/27\/you-should-update-your-netgear-orbi-router-now-and-check-for-more-patches-soon\/","title":{"rendered":"You should update your Netgear Orbi router now and check for more patches soon"},"content":{"rendered":"<p>TechSpot is about to celebrate its 25th anniversary. TechSpot means tech analysis and advice <a href=\"https:\/\/www.techspot.com\/ethics.html\" target=\"_blank\" rel=\"noopener\">you\u00a0can\u00a0trust<\/a>.<\/p>\n<div>\n<p id=\"why-it-matters\"><strong>Security Alert:<\/strong> Routers can be an easily forgotten security risk because users don&#8217;t directly interact with them every day despite their central role in networking. A newly publicized set of vulnerabilities present the latest of multiple security incidents that have recently hit routers, particularly those from Netgear. <\/p>\n<p>Security researchers at Cisco Talos have <a href=\"https:\/\/blog.talosintelligence.com\/vulnerability-spotlight-netgear-orbi-router-vulnerable-to-arbitrary-command-execution\/\">published<\/a> four vulnerabilities affecting Netgear Orbi mesh wireless systems. The device&#8217;s latest firmware resolves three of the issues, but the fourth remains a threat, so users should keep checking for further updates.<\/p>\n<p>Three of the exploits, including the unresolved one, affect the main Orbi router. A fourth impacts the satellites that extend the router&#8217;s WiFi signal range when installed in large buildings. Talos <a href=\"https:\/\/talosintelligence.com\/vulnerability_reports\/TALOS-2022-1596\">highlights<\/a> the Orbi Satellite RBS750 as a specific affected model, while Netgear lists that device along with several others.<\/p>\n<p>The satellite vulnerability, designated TALOS-2022-1596 (CVE-2022-37337), allows arbitrary command execution if an attacker sends a specific HTTP request. Two other vulnerabilities allow an attacker to execute arbitrary code in the main router through different means.<\/p>\n<p><picture><source type=\"image\/webp\" data-srcset=\"https:\/\/static.techspot.com\/images2\/news\/bigimage\/2023\/03\/2023-03-23-image-38-j_500.webp 500w, https:\/\/static.techspot.com\/images2\/news\/bigimage\/2023\/03\/2023-03-23-image-38-j_1100.webp 1100w, https:\/\/static.techspot.com\/images2\/news\/bigimage\/2023\/03\/2023-03-23-image-38-j.webp 1920w\" data-sizes=\"(max-width: 960px) 100vw, 680px\"><img loading=\"lazy\" decoding=\"async\" height=\"1080\" width=\"1920\" alt src=\"https:\/\/static.techspot.com\/images2\/news\/bigimage\/2023\/03\/2023-03-23-image-38.jpg\" srcset=\"https:\/\/static.techspot.com\/images2\/news\/bigimage\/2023\/03\/2023-03-23-image-38-j_500.webp 500w, https:\/\/static.techspot.com\/images2\/news\/bigimage\/2023\/03\/2023-03-23-image-38-j_1100.webp 1100w, https:\/\/static.techspot.com\/images2\/news\/bigimage\/2023\/03\/2023-03-23-image-38-j.webp 1920w\"  ><\/picture><\/p>\n<p>TALOS-2022-1595 (CVE-2022-38452) requires a custom-tailored network request, while TALOS-2022-1597 (CVE-2022-36429) works through a JSON object. Finally, TALOS-2022-1598 (CVE-2022-38458) lets a hacker perform a man-in-the-middle attack to get sensitive information from the main router&#8217;s Web Services Management tool.<\/p>\n<p>Updating the firmware should protect against issues 1596, 1597, and 1598. However, Netgear has yet to resolve 1595 \u2013 the main router vulnerability involving the network request.<\/p>\n<p>Netgear says the resolved exploits, which it <a href=\"https:\/\/kb.netgear.com\/000065417\/Security-Advisory-for-Command-Injection-on-Some-Orbi-WiFi-Systems-PSV-2022-0187\">details<\/a> under different names from Talos&#8217; warning, <a href=\"https:\/\/kb.netgear.com\/000065424\/Security-Advisory-for-Command-Injection-on-Some-Orbi-WiFi-Systems-PSV-2022-0188\">require<\/a> a hacker to either log into the WiFi network or have physical ethernet access. This means attackers can only <a href=\"https:\/\/kb.netgear.com\/000065428\/Security-Advisory-for-Cleartext-Transmission-on-Some-Orbi-WiFi-Systems-PSV-2022-0189\">use<\/a> the vulnerabilities wirelessly with the network password or through an unsecured network. Furthermore, the command execution issues require admin credentials, meaning a malicious actor would have to log into the router&#8217;s control panel.<\/p>\n<p>To download the latest firmware, head to the company&#8217;s <a href=\"https:\/\/www.netgear.com\/support\/\">support page<\/a> and search for your router&#8217;s model number. Then, select Downloads > Current Versions, and select the first item with &#8220;Firmware Version&#8221; in the title. Click &#8220;Release Notes&#8221; and follow the instructions from there.<\/p>\n<p>Users should also <a href=\"https:\/\/www.netgear.com\/about\/security\/\">check Netgear&#8217;s main security update page<\/a>, which contains many other advisories detailing vulnerabilities in other products from this month. Over two dozen alerts <a href=\"https:\/\/www.techspot.com\/news\/97124-you-probably-update-netgear-router-asap.html\">appeared<\/a> on December 28 alone, so those who haven&#8217;t upgraded their Netgear router&#8217;s firmware at all in 2023 should do so ASAP.<\/p>\n<\/p><\/div>\n<p><a href=\"https:\/\/www.techspot.com\/news\/98060-you-update-netgear-orbi-router-now-check-more.html\" class=\"button purchase\" rel=\"nofollow noopener\" target=\"_blank\">Read More<\/a><br \/>\n Joan Roberie<\/p>\n","protected":false},"excerpt":{"rendered":"<p>TechSpot is about to celebrate its 25th anniversary. TechSpot means tech analysis and advice you\u00a0can\u00a0trust. Security Alert: Routers can be an easily forgotten security risk because users don&#8217;t directly interact with them every day despite their central role in networking. A newly publicized set of vulnerabilities present the latest of multiple security incidents that have<\/p>\n","protected":false},"author":1,"featured_media":622503,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[24381,46,1705],"tags":[],"class_list":["post-622502","post","type-post","status-publish","format-standard","has-post-thumbnail","category-netgear","category-technology","category-update"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/posts\/622502","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/comments?post=622502"}],"version-history":[{"count":0,"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/posts\/622502\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/media\/622503"}],"wp:attachment":[{"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/media?parent=622502"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/categories?post=622502"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/tags?post=622502"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}