CVE-2014-2969 in GS108PEinfo

Zusammenfassung (Englisch)

NETGEAR GS108PE Prosafe Plus switches with firmware 1.2.0.5 have a hardcoded password of debugpassword for the ntgruser account, which allows remote attackers to upload firmware or read or modify memory contents, and consequently execute arbitrary code, via a request to (1) produce_burn.cgi, (2) register_debug.cgi, or (3) bootcode_update.cgi.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservieren

21.04.2014

Veröffentlichung

07.07.2014

Status

Bestätigt

Einträge

VulDB provides additional information and datapoints for this CVE:

ID	Schwachstelle	CWE	Aus	Mas	CVE
66983	Netgear GS108PE Default Account produce_burn.cgi erweiterte Rechte	255	Unbewiesen	Workaround	CVE-2014-2969

Beschreibung

CPE

CWE

CVSS

Exploits

History

Diff

Verknüpfen

Threat Intelligence

API JSON

API XML

API CSV

Quellen

MITRE
NVD
CVE Details

◂ ZurückÜbersichtWeiter ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!