3 matches found
CVE-2021-27254
This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R7800. Authentication is not required to exploit this vulnerability. The specific flaw exists within the applysave.cgi endpoint. This issue results from the use of hard-coded...
CVE-2021-27254
creationtimestamp| type| source ---|---|--- 2021-03-05 22:47:43+00:00| seen| https://t.me/cibsecurity/24554...
CVE-2021-27254
The CVE-2021-27254 issue affects NETGEAR R7800 devices via the apply_save.cgi endpoint. Root cause: hard-coded encryption key enabling authentication bypass for network-adjacent attackers, allowing arbitrary code execution with root privileges. Documented in multiple sources (ZDI-21-252, Red Hat ...