Netgear has decided not to issue a firmware update to 45 of its nearly 80 router and gateway models affected by a remote code execution vulnerability that was disclosed at the end of June. Left unpatched, a hacker could effectively bypass the login credentials and take control of the router.

The prospect of having an attacker root around inside a router with unfettered access to settings is unsettling, to say the least. Fortunately, Netgear has issued patches addressing the flaw to 34 affected models, but unfortunately the other 45 models will never get an update because they are listed as being “outside [the] security support period.”

Source Article