CVE-2022-27645
Severity CVSS v4.0:
Pending analysis
Type:
CWE-306
Missing Authentication for Critical Function
Publication date:
29/03/2023
Last modified:
28/04/2023
Description
This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6700v3 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within readycloud_control.cgi. The issue results from the lack of authentication prior to allowing access to functionality. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-15762.
Impact
Base Score 3.x
8.80
Severity 3.x
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:netgear:lax20_firmware:*:*:*:*:*:*:*:* | 1.1.6.34 (excluding) | |
| cpe:2.3:h:netgear:lax20:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:netgear:r6400_firmware:*:*:*:*:*:*:*:* | 1.0.4.126 (excluding) | |
| cpe:2.3:h:netgear:r6400:v2:*:*:*:*:*:*:* | ||
| cpe:2.3:o:netgear:r6700_firmware:*:*:*:*:*:*:*:* | 1.0.4.126 (excluding) | |
| cpe:2.3:h:netgear:r6700:v3:*:*:*:*:*:*:* | ||
| cpe:2.3:o:netgear:r7000_firmware:*:*:*:*:*:*:*:* | 1.0.11.134 (excluding) | |
| cpe:2.3:h:netgear:r7000:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:netgear:r7850_firmware:*:*:*:*:*:*:*:* | 1.0.5.84 (excluding) | |
| cpe:2.3:h:netgear:r7850:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:netgear:r7900p_firmware:*:*:*:*:*:*:*:* | 1.4.3.88 (excluding) | |
| cpe:2.3:h:netgear:r7900p:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:netgear:r7960p_firmware:*:*:*:*:*:*:*:* | 1.4.3.88 (excluding) | |
| cpe:2.3:h:netgear:r7960p:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:netgear:r8000_firmware:*:*:*:*:*:*:*:* | 1.0.4.84 (excluding) |
To consult the complete list of CPE names with products and versions, see this page