漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of NETGEAR R7450 1.2.0.62_1.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SOAP API endpoint, which listens on TCP port 80 by default. The issue results from the lack of proper access control. An attacker can leverage this vulnerability to disclose stored credentials, leading to further compromise. Was ZDI-CAN-11559.
CVSS Information
N/A
Vulnerability Type
访问控制不恰当
Vulnerability Title
NETGEAR R7450 访问控制错误漏洞
Vulnerability Description
Netgear NETGEAR R7450是美国网件(Netgear)公司的一款路由器。连接两个或多个网络的硬件设备,在网络间起网关的作用。 Netgear R7450 1.2.0.62_1.0.1 routers 存在访问控制错误漏洞,该漏洞缺乏适当的访问控制,攻击者可利用该漏洞披露受安装影响的敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A