NETGEAR Releases Patch for Smart Switch Authentication Bypass Vulnerability

The three serious vulnerabilities discovered by Google security engineer Gynvael Coldwind and reported to Netgear smart switches can realize authentication bypass vulnerabilities, which has caused many security information media to scramble to report, which also shows the severity of these three vulnerabilities from one side.

We look at these three vulnerabilities from the vulnerability CVSS score: codenamed Devil’s Voice (CVSS score: 9.8), Draconian Fear (CVSS score: 7.8) and Seventh Hell (TBD).

Affected Devices:

GC108P

GC108PP

GS108Tv3

GS110TPP

GS110TPv3

GS110TUP

GS308T

GS310TP

GS710TUP

GS716TP

GS716TPP

GS724TPP

GS724TPv2

GS728TPPv2

GS728TPv2

GS750E

GS752TPP

GS752TPv2

MS510TXM

MS510TXUP

Repair situation:

GC108P (fixed with firmware version 1.0.8.2)

GC108PP (fixed in firmware version 1.0.8.2)

GS108Tv3 (fixed in firmware version 7.0.7.2)

GS110TPP (fixed in firmware version 7.0.7.2)

GS110TPv3 (fixed in firmware version 7.0.7.2)

GS110TUP (fixed in firmware version 1.0.5.3)

GS308T (fixed in firmware version 1.0.3.2)

GS310TP (fixed in firmware version 1.0.3.2)

GS710TUP (fixed in firmware version 1.0.5.3)

GS716TP (fixed in firmware version 1.0.4.2)

GS716TPP (fixed in firmware version 1.0.4.2)

GS724TPP (fixed in firmware version 2.0.6.3)

GS724TPv2 (fixed in firmware version 2.0.6.3)

GS728TPPv2 (fixed in firmware version 6.0.8.2)

GS728TPv2 (fixed in firmware version 6.0.8.2)

GS750E (fixed in firmware version 1.0.1.10)

GS752TPP (fixed in firmware version 6.0.8.2)

GS752TPv2 (fixed in firmware version 6.0.8.2)

MS510TXM (fixed in firmware version 1.0.4.2)

MS510TXUP (Fixed in firmware version 1.0.4.2)

Best Practices for Updating Firmware

The advice given by the NETGEAR community is to keep the device up to date with the latest firmware. Firmware updates contain security fixes, bug fixes and new features for NETGEAR products.

Using an app that supports the product the user is using is the easiest way to update the firmware:

Orbi Product: NETGEAR Orbi app

NETGEAR WiFi Router: NETGEAR Nighthawk app

Selected NETGEAR Business Products: NETGEAR Insight App

Author: Yoyokuo