Netgear R7000 and R6400 routers, and maybe other ones too (see list below) were discovered to have a severe vulnerability on Dec 9, 2016.
Netgear responded within 3 days with a new firmware to solve the problem. Good work on their part.
But if you don’t patch and upgrade it is really quite easy to lose to control of your router and grant bad actors total access to your network and router. You will then be subject to a whole list of issues that may be really difficult to clean up.
Here is the CERN posting that details the vulnerability:
Here is an article with additional details:
Calypso Pink indicates all of these Netgear routers are vulnerable:
NetGear AC1750-Smart WiFi Router (Model R6400) NetGear AC1900-Nighthawk Smart WiFi Router (Model R7000) NetGear AC2300-Nighthawk Smart WiFi Router with MU-MIMO (Model R7000P) NetGear AC2350-Nighthawk X4 AC 2350 Dual Band WiFi Router (Model R7500) NetGear AC2600-Nighthawk X4S Smart WiFi Gaming Router (Model R7800) NetGear AC3200-Nighthawk AC3200 Tri-Band WiFi Router (Model R8000) NetGear AC5300-AC5300 Nighthawk X8 Tri-Band WiFi Router (Model R8500) NetGear AD7200-Nighthawk X10 Smart WiFi Router (R9000)