| Title | Netgear DGND3700v2 V1.1.00.15_1.00.15NA Backdoor |
|---|
| Description | A backdoor authentication bypass vulnerability exists in the NETGEAR DGND3700v2 router (firmware V1.1.00.15_1.00.15NA). By accessing the unauthenticated endpoint /BRS_top.html, the internal flag start_in_blankstate is set to 1, which disables HTTP Basic Authentication checks. As a result, an attacker can bypass login and gain full access to the device management interface without valid credentials. |
|---|
| Source | ⚠️ https://github.com/at0de/my_vulns/blob/main/Netgear/DGND3700v2/backdoor.md |
|---|
| User | 153528990 (UID 64409) |
|---|
| Submission | 04/24/2025 08:14 (1 Year ago) |
|---|
| Moderation | 05/20/2025 08:03 (26 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 309639 [Netgear DGND3700 1.1.00.15_1.00.15NA Basic Authentication /BRS_top.html improper authentication] |
|---|
| Points | 20 |
|---|