CVE-2023-40038

Arris DG860A and DG1670A devices have predictable default WPA2 PSKs that could lead to unauthorized remote access. They use the first 6 characters of the SSID and the last 6 characters of the BSSID, decrementing the last digit...

Cross site request forgery (csrf)

The Voo branded NETGEAR CG3700b custom firmware V2.02.03 allows CSRF against all /goform/ URIs. An attacker can modify all settings including WEP/WPA/WPA2 keys, restore the router to factory settings, or even upload an entire malicious configuration file...

FreeBSD : FreeBSD -- WPA2 protocol vulnerability (1f8de723-dab3-11e7-b5af-a4badb2f4699)

A vulnerability was found in how a number of implementations can be triggered to reconfigure WPA/WPA2/RSN keys TK, GTK, or IGTK by replaying a specific frame that is used to manage the keys. Impact : Such reinstallation of the encryption key can result in two different types of vulnerabilities:...

Netgear WNDAP350 Root Password Disclosure

https://revspace.nl/RevelationSpace/NewsItem11x05x30x0 Summary: http://192.168.0.237/downloadFile.php reveals secrets http://192.168.0.237/BackupConfig.php reveals secrets Included in the exposed secrets: root password and WPA2 keys The PHPs do not require authentication Vulnerable versions: 2.0....