CVE-2024-54802

wnr854t_firmware vulnerability - netgear

Critical CVSS Score: 9.8 Published: 2025-03-31

Description

In Netgear WNR854T 1.5.2 (North America), the UPNP service (/usr/sbin/upnp) is vulnerable to stack-based buffer overflow in the M-SEARCH Host header.

Affected Systems

Vendor netgear
Product wnr854t_firmware
Affected Versions 1.5.2; -
CWE ID CWE-77

Mitigation

Apply the latest security patches from the vendor, restrict network exposure where applicable, and monitor for exploitation attempts.

Fix Instructions

Refer to the vendor advisory and apply the latest security updates. See references for detailed patching instructions.

References

Risk Assessment

CVSS: 9.8/10

Exploit Available Unknown
Patch Available Unknown

Need Help Patching?

Our security team can help assess and remediate this vulnerability in your environment.

Get Help

Related Vulnerabilities

high

CVE-2025-4142

ex6200_firmware...
high

CVE-2025-4141

ex6200_firmware...
high

CVE-2025-4140

ex6120_firmware...
high

CVE-2025-4139

ex6120_firmware...
high

CVE-2025-4120

jwnr2000v2_firmware...
high

CVE-2025-4116

jwnr2000_firmware...

Stay Ahead of Threats

Subscribe to our vulnerability feed and get instant alerts when new CVEs affect your systems.

Start Monitoring