Primary

Context

Netgear DGN2200 Router Authentication Bypass Vulnerability

Vulnerability

An authentication bypass vulnerability has been identified in the Netgear DGN2200 router, specifically in firmware versions through v1.0.0.46. This vulnerability allows unauthorized users to bypass authentication by appending '?x=1.gif' to the requested URL, which is then recognized as authenticated.

Impact

Exploitation of this vulnerability allows for unauthorized access, potentially leading to further actions that require authentication.

Reproduction

To reproduce this vulnerability, send a request to the DGN2200 router's web interface with the URL parameter '?x=1.gif'. The router will incorrectly validate the authentication, allowing access to protected resources or functions.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

5.7

impact

5.0

exploitability

8.1

remediation

0.0

relevance

0.0

threat

2.6

urgency

2.9

incentive

9.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.7

impact

5.0

exploitability

8.1

remediation

0.0

relevance

0.0

threat

2.6

urgency

2.9

incentive

9.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Netgear DGN2200 Router Authentication Bypass Vulnerability

Vulnerability

Impact

Reproduction

Affected Products

Netgear DGN2200

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating