Vulnerability Details : CVE-2019-17372
Certain NETGEAR devices allow remote attackers to disable all authentication requirements by visiting genieDisableLanChanged.cgi. The attacker can then, for example, visit MNU_accessPassword_recovered.html to obtain a valid new admin password. This affects AC1450, D8500, DC112A, JNDR3000, LG2200D, R4500, R6200, R6200V2, R6250, R6300, R6300v2, R6400, R6700, R6900P, R6900, R7000P, R7000, R7100LG, R7300, R7900, R8000, R8300, R8500, WGR614v10, WN2500RPv2, WNDR3400v2, WNDR3700v3, WNDR4000, WNDR4500, WNDR4500v2, WNR1000, WNR1000v3, WNR3500L, and WNR3500L.
Vulnerability category: BypassGain privilege
Products affected by CVE-2019-17372
- cpe:2.3:o:netgear:wnr1000v3_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:r6400_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:r6700_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:r6900_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:r7000_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:r7100lg_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:r7900_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:r8000_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:r6250_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:r6200_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:r6300_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:ac1450_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:wndr3700v3_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:wndr4000_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:wndr4500_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:wnr1000_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:wnr3500l_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:r8300_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:r8500_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:r7000p_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:r6900p_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:d8500_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:r7300_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:dc112a_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:jndr3000_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:lg2200d_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:r4500_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:r6200v2_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:r6300v2_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:wgr614v10_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:wn2500rpv2_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:wndr3400v2_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:netgear:wndr4500v2_firmware:-:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2019-17372
1.62%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 87 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2019-17372
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
4.3
|
MEDIUM | AV:N/AC:M/Au:N/C:P/I:N/A:N |
8.6
|
2.9
|
NIST | |
8.1
|
HIGH | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
2.2
|
5.9
|
NIST |
CWE ids for CVE-2019-17372
-
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.Assigned by: nvd@nist.gov (Primary)
References for CVE-2019-17372
-
https://github.com/zer0yu/CVE_Request/blob/master/netgear/netgear_cgi_unauthorized_access_vulnerability.md
CVE_Request/netgear_cgi_unauthorized_access_vulnerability.md at master · zer0yu/CVE_Request · GitHubExploit;Third Party Advisory
Jump to