A vulnerability in the Netgear DGN2200 router with firmware version v1.0.0.46 and earlier permits unauthorized individuals to bypass the authentication. When adding "?x=1.gif" to the the requested url, it will be recognized as passing the authentication.
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HNetgear Dgn2200
HWNetgearwszystkie wersjeNetgear Dgn2200 Firmware
OSNetgear≤ 1.0.0.46
Related vulnerabilities
ping.cgi on NETGEAR DGN2200 devices with firmware through 10.0.0.50 allows remote authenticated users to execu...
Certain NETGEAR devices are affected by lack of access control at the function level. This affects D6220 befor...
Certain NETGEAR devices allow unauthenticated access to critical .cgi and .htm pages via a substring ending wi...
A vulnerability is in the 'BSW_cxttongr.htm' page of the Netgear DGN2200, version DGN2200-V1.0.0.50_7.0.50, an...
NETGEAR DGN2200v1 devices before v1.0.0.60 mishandle HTTPd authentication (aka PSV-2020-0363, PSV-2020-0364, a...