漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
This vulnerability allows network-adjacent attackers to compromise the integrity of downloaded information on affected installations of NETGEAR R6700v3 1.0.4.120_10.0.91 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the downloading of files via HTTPS. The issue results from the lack of proper validation of the certificate presented by the server. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of root. Was ZDI-CAN-15797.
CVSS Information
N/A
Vulnerability Type
证书验证不恰当
Vulnerability Title
NETGEAR R6700v3 信任管理问题漏洞
Vulnerability Description
NETGEAR R6700v3是美国网件(NETGEAR)公司的一款路由器。连接两个或多个网络的硬件设备,在网络间起网关的作用。 NETGEAR R6700v3 1.0.4.120_10.0.91版本存在信任管理问题漏洞,该漏洞源于对服务器提供的证书缺乏适当的验证。攻击者利用该漏洞在root环境中执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A