8.8
CVE-2020-27872
- EPSS 1.11%
- Veröffentlicht 04.02.2021 17:15:13
- Zuletzt bearbeitet 21.11.2024 05:21:58
- Quelle zdi-disclosures@trendmicro.com
- Teams Watchlist Login
- Unerledigt Login
This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R7450 1.2.0.62_1.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the mini_httpd service, which listens on TCP port 80 by default. The issue results from improper state tracking in the password recovery process. An attacker can leverage this in conjunction with other vulnerabilities to execute code in the context of root. Was ZDI-CAN-11365.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Netgear ≫ Ac2100 Firmware Version < 1.2.0.76
Netgear ≫ Ac2400 Firmware Version < 1.2.0.76
Netgear ≫ Ac2600 Firmware Version < 1.2.0.76
Netgear ≫ R6700 Firmware Version < 1.2.0.76
Netgear ≫ R6800 Firmware Version < 1.2.0.76
Netgear ≫ R6900 Firmware Version < 1.2.0.76
Netgear ≫ R7200 Firmware Version < 1.2.0.76
Netgear ≫ R7350 Firmware Version < 1.2.0.76
Netgear ≫ R7400 Firmware Version < 1.2.0.76
Netgear ≫ R7450 Firmware Version < 1.2.0.76
Netgear ≫ R6220 Firmware Version < 1.1.0.104
Netgear ≫ R6230 Firmware Version < 1.1.0.104
Netgear ≫ R6260 Firmware Version < 1.1.0.78
Netgear ≫ R6330 Firmware Version < 1.1.0.78
Netgear ≫ R6350 Firmware Version < 1.1.0.78
Netgear ≫ R6850 Firmware Version < 1.1.0.78
Netgear ≫ R6120 Firmware Version < 1.0.0.76
Netgear ≫ R6020 Firmware Version < 1.0.0.48
Netgear ≫ R6080 Firmware Version < 1.0.0.48
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.11% | 0.772 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 8.8 | 2.8 | 5.9 |
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 5.8 | 6.5 | 6.4 |
AV:A/AC:L/Au:N/C:P/I:P/A:P
|
| zdi-disclosures@trendmicro.com | 8.8 | 2.8 | 5.9 |
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
CWE-642 External Control of Critical State Data
The product stores security-critical state information about its users, or the product itself, in a location that is accessible to unauthorized actors.
CWE-668 Exposure of Resource to Wrong Sphere
The product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource.