NETGEAR.WebServer.Module.Command.Injection
Description
This indicates detection of an Improper Authentication vulnerability in Netgear Devices.
The vulnerability is due to lack of authentication for some critical modules. Remote attackers can exploit this vulnerability to inject malicious commands on the affected devices.
Affected Products
Following devices are affected:
R6200
R6250
R6400
R6700
R6900
R7000
R7100LG
R7300
R7900,
R8000
D6220
D6400
D7000
Impact
System Compromise: Remote attackers can gain control of vulnerable systems
Recommended Actions
Currently we are unaware of any vendor supplied patch or updates available for this issue.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2020-03-10 | 15.791 | Sig Added |
2019-06-10 | 14.629 | Severity:critical:high |