A Command Injection vulnerability exists in NETGEAR WNR2000v4 version 1.0.0.70. When using HTTP for SOAP authentication, command execution occurs during the process after successful authentication.
The vulnerability (CWE-77) consists of insufficient input data validation in the SOAP authentication handling process carried out via the HTTP protocol. After successful authentication through the SOAP interface, an attacker can inject malicious system commands that are executed directly by the device's operating system. The lack of proper data sanitization at the SOAP request processing stage allows embedding a payload with arbitrary commands.
An attacker who carries out the attack gains the ability to execute arbitrary commands on the device with potentially high privileges, which may lead to complete takeover of the router, disclosure of sensitive configuration data, and disruption of network availability.
Patches available from the manufacturer should be applied in accordance with references (https://www.netgear.com/about/security/). Until updates are implemented, it is recommended to restrict access to the router's administrative interface exclusively from trusted local networks and to disable remote device management.
NETGEAR WNR2000v4 with firmware version 1.0.0.70
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HNetgear Wnr2000
HWNetgearv4Netgear Wnr2000 Firmware
OSNetgear1.0.0.70
Related vulnerabilities
NETGEAR WNR2000v3 devices before 1.1.2.14, WNR2000v4 devices before 1.0.0.66, and WNR2000v5 devices before 1.0...
Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects D7800 b...
An exploitable firmware modification vulnerability was discovered on the Netgear WNR2000v1 router. An attacker...
Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D...
Certain NETGEAR devices are affected by password exposure. This affects AC1450 before 2017-01-06, C6300 before...