Netgear has released firmware updates for two of its router products lines, patching vulnerabilities that were reported in January. The flaws pose a risk to the privacy and security of data moving through the networking gear. Users should update to firmware version 1.0.59, which includes fixes for an authentication bypass vulnerability and also addresses a hard-coded cryptographic key embedded in older versions of the firmware. A vulnerability note published by CERT operating at the Software Engineering Institute at Carnegie Mellon University said Netgear router models D6000 and D3600 are affected.
Source: https://threatpost.com/netgear-router-update-removes-hardcoded-crypto-keys/118606/