#VU46760 Improper Authentication


Published: 2020-09-16

Vulnerability identifier: #VU46760

Vulnerability risk: Low

CVSSv3: 5.7 [CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2020-17409

CWE-ID: CWE-287

Exploitation vector: Local network

Exploit availability: No

Vulnerable software: R6020
Hardware solutions / Routers & switches, VoIP, GSM, etc
R6080
Hardware solutions / Routers & switches, VoIP, GSM, etc
R6120
Hardware solutions / Routers & switches, VoIP, GSM, etc
R6220
Hardware solutions / Routers & switches, VoIP, GSM, etc
R6230
Hardware solutions / Routers & switches, VoIP, GSM, etc
R6260
Hardware solutions / Routers & switches, VoIP, GSM, etc
R6330
Hardware solutions / Routers & switches, VoIP, GSM, etc
R6350
Hardware solutions / Routers & switches, VoIP, GSM, etc
R6850
Hardware solutions / Routers & switches, VoIP, GSM, etc
WNR2020
Hardware solutions / Routers & switches, VoIP, GSM, etc
JNR3210
Hardware solutions / Routers & switches, VoIP, GSM, etc

Vendor: NETGEAR

Description

The vulnerability allows a remote attacker to bypass authentication process.

The vulnerability exists due to an error in when processing authentication requests within the "mini_httpd" service. A remote attacker on the local network can bypass authentication process and disclose stored credentials.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

R6020: -

R6080: -

R6120: -

R6220: -

R6230: -

R6260: -

R6330: -

R6350: -

R6850: -

WNR2020: -

JNR3210: -

CPE

External links
https://www.zerodayinitiative.com/advisories/ZDI-20-1176/
https://kb.netgear.com/000062304/Security-Advisory-for-Authentication-Bypass-on-Some-Routers-PSV-2020-0258


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability