CVE-2013-10063

MEDIUM

Netgear SPH200D Skype phone firmware <=1.0.4.80 - Path Traversal

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2013-10063. PoCs published by m-1-k-3, including Metasploit module auxiliary/scanner/http/netgear_sph200d_traversal.

AI-analyzed exploit summary This advisory details multiple vulnerabilities in Netgear SPH200D firmware 1.0.4.80, including directory traversal, password change without authentication, local path disclosure, and reflected XSS. The writeup provides proof-of-concept requests and responses but does not include executable exploit code.

Description

A path traversal vulnerability exists in the Netgear SPH200D Skype phone firmware versions <= 1.0.4.80 in its embedded web server. Authenticated attackers can exploit crafted GET requests to access arbitrary files outside the web root by injecting traversal sequences. This can expose sensitive system files and configuration data.

Exploits (2)

exploitdb WRITEUP

by m-1-k-3 · textwebappshardware

https://www.exploit-db.com/exploits/24441

View Code ZIP pw:eip

This advisory details multiple vulnerabilities in Netgear SPH200D firmware 1.0.4.80, including directory traversal, password change without authentication, local path disclosure, and reflected XSS. The writeup provides proof-of-concept requests and responses but does not include executable exploit code.

Classification

Writeup 100%

Attack Type

Info Leak | Auth Bypass | Xss

Complexity

Trivial

Reliability

Reliable

Target: Netgear SPH200D firmware 1.0.4.80

Auth required

Prerequisites: Network access to the device · Authentication credentials for some vulnerabilities

MITRE ATT&CK

T1006 - Direct Volume Access T1059.007 - JavaScript T1552.001 - Credentials In Files

devstral-2 · analyzed Feb 16, 2026 Full analysis →

metasploit WORKING POC

rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/netgear_sph200d_traversal.rb

View Code ZIP pw:eip

This Metasploit module exploits a directory traversal vulnerability in Netgear SPH200D Skype telephone devices. It attempts to access sensitive files via traversal sequences and downloads them if successful.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Netgear SPH200D Skype telephone

Auth required

Prerequisites: Network access to the target device · Valid credentials for authentication

MITRE ATT&CK

T1006 - Direct Volume Access

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Various Sources exploit

https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/auxiliary/scanner/http/netgear_sph200d_traversal.rb

Exploit, Third Party Advisory exploit

https://www.exploit-db.com/exploits/24441

Various Sources technical-description exploit

https://web.archive.org/web/20130207034706/http://www.s3cur1ty.de/m1adv2013-002

Third Party Advisory third-party-advisory

https://www.vulncheck.com/advisories/netgear-sph200d-path-traversal-via-http-get

Scores

CVSS v4 6.9

EPSS 0.0085

EPSS Percentile 53.4%

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact partial

Details

CWE

CWE-22

Status published

Products (1)

Netgear/SPH200D < 1.0.4.80

Published Aug 01, 2025

Tracked Since Feb 18, 2026