All known versions of the Netgear Genie Installer for...
High severity
Unreviewed
Published
Dec 31, 2021
to the GitHub Advisory Database
•
Updated Jan 27, 2023
Description
Published by the National Vulnerability Database
Dec 30, 2021
Published to the GitHub Advisory Database
Dec 31, 2021
Last updated
Jan 27, 2023
All known versions of the Netgear Genie Installer for macOS contain a local privilege escalation vulnerability. The installer of the macOS version of Netgear Genie handles certain files in an insecure way. A malicious actor who has local access to the endpoint on which the software is going to be installed may overwrite certain files to obtain privilege escalation to root.
References