Primary

Context

Netgear WNR614 Improper Authentication Vulnerability

Vulnerability

A critical vulnerability exists in the Netgear WNR614 router, specifically in version 1.1.0.28_1.0.1WW. This vulnerability allows remote attackers to bypass authentication by manipulating the URL with a specific input, leading to unauthorized access. The issue has been publicly disclosed and is being actively exploited.

Impact

Exploitation of this vulnerability allows for unauthorized access by bypassing authentication requirements, potentially leading to unauthorized actions or access to sensitive information.

Reproduction

To reproduce this vulnerability, send a request to the router's URL with the input '%00currentsetting.htm' appended. This will be processed as a valid authentication, bypassing any login requirements.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

5.7

impact

7.5

exploitability

9.1

remediation

0.0

relevance

0.1

threat

6.4

urgency

2.9

incentive

9.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.7

impact

7.5

exploitability

9.1

remediation

0.0

relevance

0.1

threat

6.4

urgency

2.9

incentive

9.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Netgear WNR614 Improper Authentication Vulnerability

Vulnerability

Impact

Reproduction

Affected Products

Netgear WNR614

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating