Authentication Bypass Vulnerability in NETGEAR R7450 Routers
CVE-2020-27872

8.8HIGH

Key Information:

Vendor: Netgear
Status: R7450
Vendor: CVE Published:; 4 February 2021

Summary

The vulnerability in NETGEAR R7450 routers allows network-adjacent attackers to bypass authentication. This critical flaw arises from improper state tracking within the mini_httpd service, which operates on TCP port 80 by default. An attacker can take advantage of this vulnerability to execute code with root privileges, potentially compromising the router and any connected devices. Proper safeguarding measures and prompt updates are essential to mitigate this risk.

Affected Version(s)

R7450 1.2.0.62_1.0.1

References

https://www.zerodayinitiative.com/advisories/ZDI-21-071/

x_refsource_MISC

https://kb.netgear.com/000062641/Security-Advisory-for-Pa...

x_refsource_MISC

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 4, 2021
Vulnerability Reserved
Oct 27, 2020

Credit

1sd3d of Viettel Cyber Security