8.8
CVE-2022-27645
- EPSS 0.17%
- Published 29.03.2023 19:15:08
- Last modified 21.11.2024 06:56:05
- Source zdi-disclosures@trendmicro.com
- Teams watchlist Login
- Open Login
This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6700v3 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within readycloud_control.cgi. The issue results from the lack of authentication prior to allowing access to functionality. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-15762.
Data is provided by the National Vulnerability Database (NVD)
Netgear ≫ Lax20 Firmware Version < 1.1.6.34
Netgear ≫ R6400 Firmware Version < 1.0.4.126
Netgear ≫ R6700 Firmware Version < 1.0.4.126
Netgear ≫ R7000 Firmware Version < 1.0.11.134
Netgear ≫ R7850 Firmware Version < 1.0.5.84
Netgear ≫ R7900p Firmware Version < 1.4.3.88
Netgear ≫ R7960p Firmware Version < 1.4.3.88
Netgear ≫ R8000 Firmware Version < 1.0.4.84
Netgear ≫ R8000p Firmware Version < 1.4.3.88
Netgear ≫ R8500 Firmware Version < 1.0.2.158
Netgear ≫ Rax15 Firmware Version < 1.0.10.110
Netgear ≫ Rax20 Firmware Version < 1.0.10.110
Netgear ≫ Rax200 Firmware Version < 1.0.6.138
Netgear ≫ Rax35 Firmware Version < 1.0.10.110
Netgear ≫ Rax38 Firmware Version < 1.0.10.110
Netgear ≫ Rax40 Firmware Version < 1.0.10.110
Netgear ≫ Rax42 Firmware Version < 1.0.10.110
Netgear ≫ Rax43 Firmware Version < 1.0.10.110
Netgear ≫ Rax45 Firmware Version < 1.0.10.110
Netgear ≫ Rax48 Firmware Version < 1.0.10.110
Netgear ≫ Rax50 Firmware Version < 1.0.10.110
Netgear ≫ Rax50s Firmware Version < 1.0.10.110
Netgear ≫ Rax75 Firmware Version < 1.0.6.138
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.17% | 0.386 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 8.8 | 2.8 | 5.9 |
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
| zdi-disclosures@trendmicro.com | 8.8 | 2.8 | 5.9 |
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
CWE-306 Missing Authentication for Critical Function
The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.
CWE-697 Incorrect Comparison
The product compares two entities in a security-relevant context, but the comparison is incorrect, which may lead to resultant weaknesses.