Netgear has built beta firmware updates for its Nighthawk routers vulnerable to a command injection attack disclosed last week. The flaw allows attackers to carry out command injection attacks, and are reportedly trivial to exploit. The DHS-sponsored CERT/CC at Carnegie Mellon University has updated its advisory, and spelled out that the routers are affected by two other vulnerabilities in addition to command injection, including cross-site request forgery, and missing authentication mechanisms. Beta firmware, Netgear said, is available for the R6250, R6400, R6700 and R7000 and R8000 models.
Source: https://threatpost.com/beta-firmware-updates-available-for-vulnerable-netgear-routers/122457/