CVE-2024-51016 identifies a stack-based buffer overflow vulnerability in the Netgear XR300 router firmware version 1.0.3.78. The flaw exists in the usb_approve.cgi endpoint, specifically through the addName%d parameter, which improperly handles input data leading to a stack overflow condition. This vulnerability is classified under CWE-120 (Classic Buffer Overflow). An attacker with low privileges (PR:L) and access to the adjacent network (AV:A) can exploit this vulnerability by sending a specially crafted POST request to the vulnerable CGI script. The overflow can cause the device to crash or reboot, resulting in a denial of service (DoS) condition. The CVSS v3.1 base score is 5.7, reflecting medium severity, with no impact on confidentiality or integrity but a high impact on availability. The vulnerability does not require user interaction and affects the device's stability and availability. No patches or mitigations have been officially released at the time of publication, and no known exploits have been reported in the wild. Given the nature of the vulnerability, exploitation requires network proximity, limiting remote exploitation scope but still posing a risk in local or segmented network environments.

The primary impact of CVE-2024-51016 is denial of service, which can disrupt network connectivity and availability for organizations relying on the Netgear XR300 router. This can affect small to medium enterprises, home offices, and any environment where this router is deployed. The disruption may lead to downtime, loss of productivity, and potential operational delays. Although the vulnerability does not compromise data confidentiality or integrity, the loss of availability can impact critical network functions, especially in environments where redundancy is limited. Attackers with network access could repeatedly exploit the flaw to cause persistent outages, potentially affecting business continuity. The lack of known exploits reduces immediate risk, but the vulnerability remains a concern until patched. Organizations with segmented or less secure internal networks may face higher risk due to the adjacent network attack vector.

Organizations should immediately assess their network for the presence of Netgear XR300 routers running firmware version 1.0.3.78. Until an official patch is released, mitigation steps include restricting access to the router's management interfaces to trusted networks only, implementing network segmentation to limit adjacent network exposure, and monitoring network traffic for unusual POST requests targeting usb_approve.cgi. Employing intrusion detection/prevention systems (IDS/IPS) with custom rules to detect malformed requests to the vulnerable parameter can help mitigate exploitation attempts. Additionally, consider temporarily disabling USB approval features if feasible or restricting USB device connections to reduce attack surface. Regularly check Netgear's official channels for firmware updates addressing this vulnerability and apply patches promptly once available. Network administrators should also educate users about the risks of connecting untrusted devices to the network segment hosting the router.