Compass Security has an advisory for multiple NETGEAR wireless routers as reported by Daniel Haake:
Product: Netgear Router Firmware N300_1.1.0.31_1.0.1.img and N300-1.1.0.28_1.0.1.img
Vendor: NETGEAR
CVE ID: requested
Subject: Authentication Bypass
Risk: High
Effect: Remotely exploitable over LAN/WLAN
Multiple NETGEAR wireless routers are out of the box vulnerable to an authentication bypass attack. No router options has to be changed to exploit the issue. So an attacker can access the administration interface of the router without submitting any valid username and password, just by requesting a special URL several times. The attacker can exploit the issue by using a browser or writing a simple exploit. […]
Full advisory:
http://www.csnc.ch/en/downloads/advisories.html
http://www.shellshocklabs.com/2015/09/part-1en-hacking-netgear-jwnr2010v5.html
http://www.csnc.ch/misc/files/advisories/CSNC-2015-007_Netgear_WNR1000v4_AuthBypass.txt
Firmware Security 