This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of NETGEAR R7450 1.2.0.62_1.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SOAP API endpoint, which listens on TCP port 80 by default. The issue results from the lack of proper access control. An attacker can leverage this vulnerability to disclose stored credentials, leading to further compromise. Was ZDI-CAN-11559.
References
Link | Resource |
---|---|
https://kb.netgear.com/000062641/Security-Advisory-for-Password-Recovery-Vulnerabilities-on-Some-Routers | Vendor Advisory |
https://www.zerodayinitiative.com/advisories/ZDI-21-072/ | Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
Configuration 8 (hide)
AND |
|
Configuration 9 (hide)
AND |
|
Configuration 10 (hide)
AND |
|
Configuration 11 (hide)
AND |
|
Configuration 12 (hide)
AND |
|
Configuration 13 (hide)
AND |
|
Configuration 14 (hide)
AND |
|
Configuration 15 (hide)
AND |
|
Configuration 16 (hide)
AND |
|
Configuration 17 (hide)
AND |
|
Configuration 18 (hide)
AND |
|
Configuration 19 (hide)
AND |
|
History
08 Feb 2021, 20:10
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 3.3
v3 : 6.5 |
References | (N/A) https://kb.netgear.com/000062641/Security-Advisory-for-Password-Recovery-Vulnerabilities-on-Some-Routers - Vendor Advisory | |
References | (N/A) https://www.zerodayinitiative.com/advisories/ZDI-21-072/ - Third Party Advisory, VDB Entry | |
CPE | cpe:2.3:h:netgear:r6850:-:*:*:*:*:*:*:* cpe:2.3:h:netgear:r6220:-:*:*:*:*:*:*:* cpe:2.3:h:netgear:r6900:v2:*:*:*:*:*:*:* cpe:2.3:o:netgear:ac2600_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:netgear:r6900_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:netgear:r7350:-:*:*:*:*:*:*:* cpe:2.3:h:netgear:r7450:-:*:*:*:*:*:*:* cpe:2.3:o:netgear:r6850_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:netgear:ac2100:-:*:*:*:*:*:*:* cpe:2.3:o:netgear:r6080_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:netgear:r6800_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:netgear:r6260_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:netgear:r6020:-:*:*:*:*:*:*:* cpe:2.3:o:netgear:r6120_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:netgear:ac2100_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:netgear:r6020_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:netgear:r6350_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:netgear:r6220_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:netgear:r6800:-:*:*:*:*:*:*:* cpe:2.3:o:netgear:r7400_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:netgear:ac2400_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:netgear:ac2400:-:*:*:*:*:*:*:* cpe:2.3:h:netgear:r6330:-:*:*:*:*:*:*:* cpe:2.3:h:netgear:r6080:-:*:*:*:*:*:*:* cpe:2.3:h:netgear:r6350:-:*:*:*:*:*:*:* cpe:2.3:o:netgear:r7350_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:netgear:r6700_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:netgear:r6330_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:netgear:r6230_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:netgear:r7200:-:*:*:*:*:*:*:* cpe:2.3:o:netgear:r7450_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:netgear:r7200_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:netgear:ac2600:-:*:*:*:*:*:*:* cpe:2.3:h:netgear:r7400:-:*:*:*:*:*:*:* cpe:2.3:h:netgear:r6260:-:*:*:*:*:*:*:* cpe:2.3:h:netgear:r6230:-:*:*:*:*:*:*:* cpe:2.3:h:netgear:r6120:-:*:*:*:*:*:*:* cpe:2.3:h:netgear:r6700:v2:*:*:*:*:*:*:* |
|
CWE | CWE-863 |
04 Feb 2021, 19:15
Type | Values Removed | Values Added |
---|---|---|
Summary | This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of NETGEAR R7450 1.2.0.62_1.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SOAP API endpoint, which listens on TCP port 80 by default. The issue results from the lack of proper access control. An attacker can leverage this vulnerability to disclose stored credentials, leading to further compromise. Was ZDI-CAN-11559. |
04 Feb 2021, 18:27
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-02-04 17:15
Updated : 2023-12-10 13:41
NVD link : CVE-2020-27873
Mitre link : CVE-2020-27873
CVE.ORG link : CVE-2020-27873
JSON object : View
Products Affected
netgear
- r6330_firmware
- r6220
- r6220_firmware
- r7450_firmware
- r6330
- r6080
- ac2100_firmware
- r6800
- ac2100
- r6020_firmware
- r6120_firmware
- r6080_firmware
- r6020
- r7200_firmware
- r6350_firmware
- r7350
- r6850
- ac2600_firmware
- r7350_firmware
- r7400_firmware
- ac2400_firmware
- r6230
- ac2600
- r6700_firmware
- r6260_firmware
- r6230_firmware
- r7450
- ac2400
- r6800_firmware
- r7400
- r6120
- r6900_firmware
- r7200
- r6850_firmware
- r6700
- r6260
- r6900
- r6350