Vulnerability Management – Netgear Smart Switches Vulnerable to Authentication Bypass

On September 3, 2021, Netgear issued patches for three authentication bypass vulnerabilities impacting several of its smart switches. The vulnerabilities have been dubbed Demon’s Cries, Draconian Fear, and Seventh Inferno and allow for complete takeover of the affected devices. If your utility uses Netgear smart switches, please view Netgear support for a list of affected product models and address accordingly. For more highlights on these vulnerabilities, visit The Record.