CVE-2021-34983

NETGEAR Multiple Routers httpd Missing Authentication for Critical Function Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of multiple NETGEAR routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the httpd service, which listens on TCP port 80 by default. The issue results from the lack of authentication prior to allowing access to system configuration information. An attacker can leverage this vulnerability to disclose stored credentials, leading to further compromise. Was ZDI-CAN-13708.

CVSS v3 6.5 MEDIUM

6.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector : AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitability : 2.8 / Impact : 3.6

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://kb.netgear.com/000064313/Security-Advisory-for-Pre-Authentication-Buffer-Overflow-on-Some-Extenders-Routers-and-DSL-Modem-Routers-PSV-2021-0159
https://www.zerodayinitiative.com/advisories/ZDI-21-1275/
https://kb.netgear.com/000064313/Security-Advisory-for-Pre-Authentication-Buffer-Overflow-on-Some-Extenders-Routers-and-DSL-Modem-Routers-PSV-2021-0159
https://www.zerodayinitiative.com/advisories/ZDI-21-1275/

Configurations

No configuration.

History

21 Nov 2024, 06:11

Type	Values Removed	Values Added
References	~~() https://kb.netgear.com/000064313/Security-Advisory-for-Pre-Authentication-Buffer-Overflow-on-Some-Extenders-Routers-and-DSL-Modem-Routers-PSV-2021-0159 -~~	() https://kb.netgear.com/000064313/Security-Advisory-for-Pre-Authentication-Buffer-Overflow-on-Some-Extenders-Routers-and-DSL-Modem-Routers-PSV-2021-0159 -
References	~~() https://www.zerodayinitiative.com/advisories/ZDI-21-1275/ -~~	() https://www.zerodayinitiative.com/advisories/ZDI-21-1275/ -

04 Aug 2024, 01:35

Type	Values Removed	Values Added
CWE	~~CWE-120~~

03 Jul 2024, 01:36

Type	Values Removed	Values Added
CWE		CWE-120

08 May 2024, 13:15

Type	Values Removed	Values Added
Summary		(es) Falta autenticación httpd de varios enrutadores de NETGEAR para vulnerabilidad de divulgación de información de funciones críticas. Esta vulnerabilidad permite a atacantes adyacentes a la red revelar información confidencial sobre instalaciones afectadas de múltiples enrutadores NETGEAR. No se requiere autenticación para aprovechar esta vulnerabilidad. La falla específica existe dentro del servicio httpd, que escucha en el puerto TCP 80 de forma predeterminada. El problema se debe a la falta de autenticación antes de permitir el acceso a la información de configuración del sistema. Un atacante puede aprovechar esta vulnerabilidad para revelar las credenciales almacenadas, lo que provocaría un mayor compromiso. Era ZDI-CAN-13708.

07 May 2024, 23:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-05-07 23:15

Updated : 2024-11-21 06:11

NVD link : CVE-2021-34983

Mitre link : CVE-2021-34983

CVE.ORG link : CVE-2021-34983

JSON object : View

Products Affected

No product.

CWE

CWE-306

Missing Authentication for Critical Function

6.5 /10