CVE-2017-5521 - NETGEAR Multiple Devices Exposure of Sensitive Information Vulnerability
Project:NETGEAR
Product:Multiple Devices
Date Added:2022-09-08Due Date:2022-09-29
Vulnerability Name
NETGEAR Multiple Devices Exposure of Sensitive Information Vulnerability
Description
Multiple NETGEAR devices are prone to admin password disclosure via simple crafted requests to the web management server.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions. If the affected device has since entered end-of-life, it should be disconnected if still in use.
Additional Notes
https://kb.netgear.com/30632/Web-GUI-Password-Recovery-and-Exposure-Security-Vulnerability
https://nvd.nist.gov/vuln/detail/CVE-2017-5521