What is the severity of CVE-2022-47052?

CVE-2022-47052 is considered a medium severity vulnerability due to its potential for exploitation via CRLF injection.

How do I fix CVE-2022-47052?

To fix CVE-2022-47052, upgrade the firmware of your NETGEAR R6220 to the latest version that addresses this vulnerability.

Can CVE-2022-47052 be exploited remotely?

Yes, CVE-2022-47052 can be exploited by a remote unauthenticated attacker using a specially crafted URL.

Which firmware versions are affected by CVE-2022-47052?

CVE-2022-47052 affects firmware versions 1.1.0.112_1.0.1 and 1.1.0.114_1.0.1 for the NETGEAR R6220.

Vulnerability/
CVE-2022-47052

medium

6.1

CWE

74 79 93

25/1/2023

1/4/2025

CVE-2022-47052: XSS

First published: Wed Jan 25 2023(Updated: )

The web interface of the 'Nighthawk R6220 AC1200 Smart Wi-Fi Router' is vulnerable to a CRLF Injection attack that can be leveraged to perform Reflected XSS and HTML Injection. A malicious unauthenticated attacker can exploit this vulnerability using a specially crafted URL. This affects firmware versions: V1.1.0.112_1.0.1, V1.1.0.114_1.0.1.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
NETGEAR R6220	=1.1.0.112_1.0.1
NETGEAR R6220	=1.1.0.114_1.0.1
NETGEAR R6220
All of
Any of
NETGEAR R6220	=1.1.0.112_1.0.1
NETGEAR R6220	=1.1.0.114_1.0.1
NETGEAR R6220

Never miss a vulnerability like this again

Reference Links

https://github.com/dest-3/NETGEAR/tree/main/CVE-2022-47052

Frequently Asked Questions

What is the severity of CVE-2022-47052?
CVE-2022-47052 is considered a medium severity vulnerability due to its potential for exploitation via CRLF injection.
How do I fix CVE-2022-47052?
To fix CVE-2022-47052, upgrade the firmware of your NETGEAR R6220 to the latest version that addresses this vulnerability.
Can CVE-2022-47052 be exploited remotely?
Yes, CVE-2022-47052 can be exploited by a remote unauthenticated attacker using a specially crafted URL.
What types of attacks can be executed due to CVE-2022-47052?
CVE-2022-47052 can be leveraged to perform Reflected XSS and HTML Injection attacks.
Which firmware versions are affected by CVE-2022-47052?
CVE-2022-47052 affects firmware versions 1.1.0.112_1.0.1 and 1.1.0.114_1.0.1 for the NETGEAR R6220.

agent/type
agent/weakness
agent/author
agent/severity
agent/references
agent/first-publish-date
agent/description
collector/nvd-index
agent/software-canonical-lookup-request
collector/mitre-cve
source/MITRE
agent/source
agent/last-modified-date
agent/softwarecombine
agent/tags
agent/event
collector/nvd-api
source/NVD
agent/software-canonical-lookup
vendor/netgear
canonical/netgear r6220
version/netgear r6220/1.1.0.112_1.0.1
version/netgear r6220/1.1.0.114_1.0.1

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.