漏洞描述
NETGEAR DGND3700是一款功能强大的无线路由器和调制解调器(Modem)组合设备。它是NETGEAR公司生产的一款双频(2.4GHz和5GHz)路由器,旨在提供快速和可靠的互联网连接。ETGEAR DGND3700v2 存在身份认证绕过漏洞,攻击者可利用漏洞读取用户账号密码,访问敏感信息页面。
NETGEAR DGND3700v2 /setup.cgi 身份认证绕过漏洞
PoC代码
暂无相关漏洞推荐
- Atlassian Confluence /json/setup-restore.action 文件上传漏洞(CVE-2023-22518)
- POC CVE-2016-1555: NETGEAR WNAP320 Access Point Firmware - Remote Command Injection
- POC CVE-2016-5649: NETGEAR DGN2200 / DGND3700 - Admin Password Disclosure
- POC CVE-2016-6277: NETGEAR Routers - Remote Code Execution
- POC CVE-2017-5521: NETGEAR Routers - Authentication Bypass
- POC CVE-2020-26919: NETGEAR ProSAFE Plus - Unauthenticated Remote Code Execution
- POC CVE-2020-27866: NETGEAR - Authentication Bypass
- POC CVE-2022-29383: NETGEAR ProSafe SSL VPN firmware - SQL Injection
- POC CVE-2017-5521: Bypassing Authentication on NETGEAR Routers
- POC netgear-router-auth-bypass: NETGEAR DGN2200v1 - Authentication Bypass
- POC netgear-router-exposure: NETGEAR Routers - Serial Number Disclosure
- POC netgear-wac124-router-auth-bypass: NETGEAR WAC124 - Authentication Bypass
- 契约锁电子签章系统 /api/setup/dbtest 代码执行漏洞