CVE-2022-27644

EPSS 0.09%
Published 29.03.2023 19:15:08
Last modified 21.11.2024 06:56:05
Source zdi-disclosures@trendmicro.com
Teams watchlist Login
Open Login

This vulnerability allows network-adjacent attackers to compromise the integrity of downloaded information on affected installations of NETGEAR R6700v3 1.0.4.120_10.0.91 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the downloading of files via HTTPS. The issue results from the lack of proper validation of the certificate presented by the server. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of root. Was ZDI-CAN-15797.

Affected products Warnungen 0 Metrics 3 CWE 1 References 5

Data is provided by the National Vulnerability Database (NVD)

Netgear ≫ R6400 Firmware Version < 1.0.4.126

Netgear ≫ R6400 Versionv2

Netgear ≫ R6700 Firmware Version < 1.0.4.126

Netgear ≫ R6700 Versionv3

Netgear ≫ R6900p Firmware Version < 1.3.3.148

Netgear ≫ R6900p Version-

Netgear ≫ R7000 Firmware Version < 1.0.11.134

Netgear ≫ R7000 Version-

Netgear ≫ R7000p Firmware Version < 1.3.3.148

Netgear ≫ R7000p Version-

Netgear ≫ R7850 Firmware Version < 1.0.5.84

Netgear ≫ R7850 Version-

Netgear ≫ R7960p Firmware Version < 1.4.3.88

Netgear ≫ R7960p Version-

Netgear ≫ R8000 Firmware Version < 1.0.4.84

Netgear ≫ R8000 Version-

Netgear ≫ R8000p Firmware Version < 1.4.3.88

Netgear ≫ R8000p Version-

Netgear ≫ Rax200 Firmware Version < 1.0.6.138

Netgear ≫ Rax200 Version-

Netgear ≫ Rax75 Firmware Version < 1.0.6.138

Netgear ≫ Rax75 Version-

Netgear ≫ Rax80 Firmware Version < 1.0.6.138

Netgear ≫ Rax80 Version-

Netgear ≫ Rs400 Firmware Version < 1.5.1.86

Netgear ≫ Rs400 Version-

Netgear ≫ Cbr40 Firmware Version < 2.5.0.28

Netgear ≫ Cbr40 Version-

Netgear ≫ Lbr1020 Firmware Version < 2.7.4.2

Netgear ≫ Lbr1020 Version-

Netgear ≫ Lbr20 Firmware Version < 2.7.4.2

Netgear ≫ Lbr20 Version-

Netgear ≫ Rbr10 Firmware Version < 2.7.4.24

Netgear ≫ Rbr10 Version-

Netgear ≫ Rbr20 Firmware Version < 2.7.4.24

Netgear ≫ Rbr20 Version-

Netgear ≫ Rbr40 Firmware Version < 2.7.4.24

Netgear ≫ Rbr40 Version-

Netgear ≫ Rbr50 Firmware Version < 2.7.4.24

Netgear ≫ Rbr50 Version-

Netgear ≫ Rbs10 Firmware Version < 2.7.4.24

Netgear ≫ Rbs10 Version-

Netgear ≫ Rbs20 Firmware Version < 2.7.4.24

Netgear ≫ Rbs20 Version-

Netgear ≫ Rbs40 Firmware Version < 2.7.4.24

Netgear ≫ Rbs40 Version-

Netgear ≫ Rbs50 Firmware Version < 2.7.4.24

Netgear ≫ Rbs50 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.09%	0.234

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	8.8	2.8	5.9	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
zdi-disclosures@trendmicro.com	5	1.6	3.4	CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

CWE-295 Improper Certificate Validation

The product does not validate, or incorrectly validates, a certificate.

https://kb.netgear.com/000064721/Security-Advisory-for-Multiple-Vulnerabilities-on-Multiple-Products-PSV-2021-0324

Vendor Advisory

https://www.zerodayinitiative.com/advisories/ZDI-22-520/

Third Party Advisory

VDB Entry

https://nvd.nist.gov/vuln/detail/CVE-2022-27644

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-27644

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-27644

EUVD