CVE-2019-13395

2020-03-13T18:15:00
ID CVE-2019-13395
Type cve
Reporter cve@mitre.org
Modified 2020-03-18T16:32:00

Description

The Voo branded NETGEAR CG3700b custom firmware V2.02.03 allows CSRF against all /goform/ URIs. An attacker can modify all settings including WEP/WPA/WPA2 keys, restore the router to factory settings, or even upload an entire malicious configuration file.