| Titel | Netgear DGND3700v2 V1.1.00.15_1.00.15NA Backdoor |
|---|
| Beschreibung | A backdoor authentication bypass vulnerability exists in the NETGEAR DGND3700v2 router (firmware V1.1.00.15_1.00.15NA). By accessing the unauthenticated endpoint /BRS_top.html, the internal flag start_in_blankstate is set to 1, which disables HTTP Basic Authentication checks. As a result, an attacker can bypass login and gain full access to the device management interface without valid credentials. |
|---|
| Quelle | ⚠️ https://github.com/at0de/my_vulns/blob/main/Netgear/DGND3700v2/backdoor.md |
|---|
| Benutzer | 153528990 (UID 64409) |
|---|
| Einreichung | 24.04.2025 08:14 (vor 1 Jahr) |
|---|
| Moderieren | 20.05.2025 08:03 (26 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 309639 [Netgear DGND3700 1.1.00.15_1.00.15NA Basic Authentication /BRS_top.html schwache Authentisierung] |
|---|
| Punkte | 20 |
|---|