cvedb.io
CVE-2022-46424
HIGH · CVSS 8.1
EPSS exploitation probability: 0%
Published 2022-12-20T20:15:10.630 · Last modified 2026-06-17T05:11:45.430

Summary

An exploitable firmware modification vulnerability was discovered on the Netgear XWN5001 Powerline 500 WiFi Access Point. An attacker can conduct a MITM (Man-in-the-Middle) attack to modify the user-uploaded firmware image and bypass the CRC check, allowing attackers to execute arbitrary code or cause a Denial of Service (DoS). This affects v0.4.1.1 and earlier.

Affected products

netgear — xwn5001_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when netgear ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.