Netgear has quietly decided not to patch more than 40 home routers to plug a remote code execution vulnerability – despite security researchers having published proof-of-concept exploit code.
The vulnerability was revealed publicly in June by Trend Micro's Zero Day Initiative (ZDI) following six months spent chivvying Netgear behind the scenes to take it seriously.
Netgear's advisory page for the patches shows 45 devices' fix status as "none; outside security support period".
Concerned if or how this affects you? Contact Donline for support.