Authentication Bypass Vulnerability in NETGEAR R7000 Routers
CVE-2021-34977

8.8HIGH

Key Information:

Vendor: Netgear
Status: R7000
Vendor: CVE Published:; 13 January 2022

Summary

This vulnerability permits attackers with network access to bypass authentication measures on NETGEAR R7000 routers. It arises from inadequate authentication checks during the handling of SOAP requests. Consequently, without proper authorization, an attacker can exploit this weakness to reset the administrator's password, thereby gaining unauthorized access to the router's settings and potentially compromising the entire network.

Affected Version(s)

R7000 1.0.11.116_10.2.100

References

https://www.zerodayinitiative.com/advisories/ZDI-21-1239/

x_refsource_MISC

https://kb.netgear.com/000064046/Security-Advisory-for-Au...

x_refsource_MISC

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 13, 2022
Vulnerability Reserved
Jun 17, 2021

Credit

Xinan Zhou (the University of California, Riverside and Fudan University)