logo

CVE-2017-5521 - NETGEAR Multiple Devices Exposure of Sensitive Information Vulnerability

CVE-2017-5521

NETGEAR | Multiple Devices

  • Date Added:
  • 2022-09-08
  • Due Date:
  • 2022-09-29
Vulnerability Name

NETGEAR Multiple Devices Exposure of Sensitive Information Vulnerability

Description

Multiple NETGEAR devices are prone to admin password disclosure via simple crafted requests to the web management server.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply updates per vendor instructions. If the affected device has since entered end-of-life, it should be disconnected if still in use.

Additional Notes
https://kb.netgear.com/30632/Web-GUI-Password-Recovery-and-Exposure-Security-Vulnerability; https://nvd.nist.gov/vuln/detail/CVE-2017-5521

Free online web security scanner