CVE-2020-27873 - NVD | ByteOS Network

NVD Vulnerability Details :

CVE-2020-27873

Analyzed

More Info Official Page

Source-zdi-disclosures@trendmicro.com

Published At-04 Feb, 2021 | 17:15

Updated At-08 Feb, 2021 | 20:10

This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of NETGEAR R7450 1.2.0.62_1.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SOAP API endpoint, which listens on TCP port 80 by default. The issue results from the lack of proper access control. An attacker can leverage this vulnerability to disclose stored credentials, leading to further compromise. Was ZDI-CAN-11559.

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	6.5	MEDIUM	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Secondary	3.0	6.5	MEDIUM	CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Primary	2.0	3.3	LOW	AV:A/AC:L/Au:N/C:P/I:N/A:N

Type: Primary

Version: 3.1

Base score: 6.5

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Type: Secondary

Version: 3.0

Base score: 6.5

Base severity: MEDIUM

Vector:

CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Type: Primary

Version: 2.0

Base score: 3.3

Base severity: LOW

Vector:

AV:A/AC:L/Au:N/C:P/I:N/A:N

CPE Matches

>>ac2100_firmware>>Versions before 1.2.0.76(exclusive)

cpe:2.3:o:netgear:ac2100_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:netgear:ac2100:-:*:*:*:*:*:*:*

>>ac2400_firmware>>Versions before 1.2.0.76(exclusive)

cpe:2.3:o:netgear:ac2400_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:netgear:ac2400:-:*:*:*:*:*:*:*

>>ac2600_firmware>>Versions before 1.2.0.76(exclusive)

cpe:2.3:o:netgear:ac2600_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:netgear:ac2600:-:*:*:*:*:*:*:*

>>r6700_firmware>>Versions before 1.2.0.76(exclusive)

cpe:2.3:o:netgear:r6700_firmware:*:*:*:*:*:*:*:*

>>r6700>>v2

cpe:2.3:h:netgear:r6700:v2:*:*:*:*:*:*:*

>>r6800_firmware>>Versions before 1.2.0.76(exclusive)

cpe:2.3:o:netgear:r6800_firmware:*:*:*:*:*:*:*:*

>>r6800>>-

cpe:2.3:h:netgear:r6800:-:*:*:*:*:*:*:*

>>r6900_firmware>>Versions before 1.2.0.76(exclusive)

cpe:2.3:o:netgear:r6900_firmware:*:*:*:*:*:*:*:*

>>r6900>>v2

cpe:2.3:h:netgear:r6900:v2:*:*:*:*:*:*:*

>>r7200_firmware>>Versions before 1.2.0.76(exclusive)

cpe:2.3:o:netgear:r7200_firmware:*:*:*:*:*:*:*:*

>>r7200>>-

cpe:2.3:h:netgear:r7200:-:*:*:*:*:*:*:*

>>r7350_firmware>>Versions before 1.2.0.76(exclusive)

cpe:2.3:o:netgear:r7350_firmware:*:*:*:*:*:*:*:*

>>r7350>>-

cpe:2.3:h:netgear:r7350:-:*:*:*:*:*:*:*

>>r7400_firmware>>Versions before 1.2.0.76(exclusive)

cpe:2.3:o:netgear:r7400_firmware:*:*:*:*:*:*:*:*

>>r7400>>-

cpe:2.3:h:netgear:r7400:-:*:*:*:*:*:*:*

>>r7450_firmware>>Versions before 1.2.0.76(exclusive)

cpe:2.3:o:netgear:r7450_firmware:*:*:*:*:*:*:*:*

>>r7450>>-

cpe:2.3:h:netgear:r7450:-:*:*:*:*:*:*:*

>>r6220_firmware>>Versions before 1.1.0.104(exclusive)

cpe:2.3:o:netgear:r6220_firmware:*:*:*:*:*:*:*:*

>>r6220>>-

cpe:2.3:h:netgear:r6220:-:*:*:*:*:*:*:*

>>r6230_firmware>>Versions before 1.1.0.104(exclusive)

cpe:2.3:o:netgear:r6230_firmware:*:*:*:*:*:*:*:*

>>r6230>>-

cpe:2.3:h:netgear:r6230:-:*:*:*:*:*:*:*

>>r6260_firmware>>Versions before 1.1.0.78(exclusive)

cpe:2.3:o:netgear:r6260_firmware:*:*:*:*:*:*:*:*

>>r6260>>-

cpe:2.3:h:netgear:r6260:-:*:*:*:*:*:*:*

>>r6330_firmware>>Versions before 1.1.0.78(exclusive)

cpe:2.3:o:netgear:r6330_firmware:*:*:*:*:*:*:*:*

>>r6330>>-

cpe:2.3:h:netgear:r6330:-:*:*:*:*:*:*:*

>>r6350_firmware>>Versions before 1.1.0.78(exclusive)

cpe:2.3:o:netgear:r6350_firmware:*:*:*:*:*:*:*:*

>>r6350>>-

cpe:2.3:h:netgear:r6350:-:*:*:*:*:*:*:*

>>r6850_firmware>>Versions before 1.1.0.78(exclusive)

cpe:2.3:o:netgear:r6850_firmware:*:*:*:*:*:*:*:*

>>r6850>>-

cpe:2.3:h:netgear:r6850:-:*:*:*:*:*:*:*

>>r6120_firmware>>Versions before 1.0.0.76(exclusive)

cpe:2.3:o:netgear:r6120_firmware:*:*:*:*:*:*:*:*

>>r6120>>-

cpe:2.3:h:netgear:r6120:-:*:*:*:*:*:*:*

>>r6020_firmware>>Versions before 1.0.0.48(exclusive)

cpe:2.3:o:netgear:r6020_firmware:*:*:*:*:*:*:*:*

>>r6020>>-

cpe:2.3:h:netgear:r6020:-:*:*:*:*:*:*:*

>>r6080_firmware>>Versions before 1.0.0.48(exclusive)

cpe:2.3:o:netgear:r6080_firmware:*:*:*:*:*:*:*:*

>>r6080>>-

cpe:2.3:h:netgear:r6080:-:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-863	Primary	nvd@nist.gov
CWE-284	Secondary	zdi-disclosures@trendmicro.com

CWE ID: CWE-863

Type: Primary

Source: nvd@nist.gov

CWE ID: CWE-284

Type: Secondary

Source: zdi-disclosures@trendmicro.com

References

Hyperlink	Source	Resource
https://kb.netgear.com/000062641/Security-Advisory-for-Password-Recovery-Vulnerabilities-on-Some-Routers	zdi-disclosures@trendmicro.com	Vendor Advisory
https://www.zerodayinitiative.com/advisories/ZDI-21-072/	zdi-disclosures@trendmicro.com	Third Party Advisory VDB Entry

Hyperlink: https://kb.netgear.com/000062641/Security-Advisory-for-Password-Recovery-Vulnerabilities-on-Some-Routers

Source: zdi-disclosures@trendmicro.com

Resource:

Vendor Advisory

Hyperlink: https://www.zerodayinitiative.com/advisories/ZDI-21-072/

Source: zdi-disclosures@trendmicro.com

Resource:

Third Party Advisory

VDB Entry