Описание
The administrative web interface on the Netgear DG632 with firmware 3.4.0_ap allows remote attackers to bypass authentication via a direct request to (1) gateway/commands/saveconfig.html, and (2) stattbl.htm, (3) modemmenu.htm, (4) onload.htm, (5) form.css, (6) utility.js, and possibly (7) indextop.htm in html/.
Ссылки
- Exploit
- Exploit
- Exploit
- Exploit
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:h:netgear:dg632:3.4.0_ap:*:*:*:*:*:*:*
EPSS
Процентиль: 88%
0.04095
Низкий
7.8 High
CVSS2
Дефекты
CWE-287
Связанные уязвимости
github
почти 4 года назад
The administrative web interface on the Netgear DG632 with firmware 3.4.0_ap allows remote attackers to bypass authentication via a direct request to (1) gateway/commands/saveconfig.html, and (2) stattbl.htm, (3) modemmenu.htm, (4) onload.htm, (5) form.css, (6) utility.js, and possibly (7) indextop.htm in html/.
EPSS
Процентиль: 88%
0.04095
Низкий
7.8 High
CVSS2
Дефекты
CWE-287