CVE-2020-27873

MEDIUM

NETGEAR AC2100 R7450 < 1.2.0.76 - Unauthenticated Sensitive Information Disclosure via SOAP API

Title source: llm

Description

This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of NETGEAR R7450 1.2.0.62_1.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SOAP API endpoint, which listens on TCP port 80 by default. The issue results from the lack of proper access control. An attacker can leverage this vulnerability to disclose stored credentials, leading to further compromise. Was ZDI-CAN-11559.

References (2)

Core 2

Core References

Vendor Advisory x_refsource_misc

https://kb.netgear.com/000062641/Security-Advisory-for-Password-Recovery-Vulnerabilities-on-Some-Routers

Third Party Advisory, VDB Entry x_refsource_misc

https://www.zerodayinitiative.com/advisories/ZDI-21-072/

Scores

CVSS v3 6.5

EPSS 0.0033

EPSS Percentile 55.7%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE

CWE-284 CWE-863

Status published

Products (19)

netgear/ac2100_firmware < 1.2.0.76

netgear/ac2400_firmware < 1.2.0.76

netgear/ac2600_firmware < 1.2.0.76

netgear/r6020_firmware < 1.0.0.48

netgear/r6080_firmware < 1.0.0.48

netgear/r6120_firmware < 1.0.0.76

netgear/r6220_firmware < 1.1.0.104

netgear/r6230_firmware < 1.1.0.104

netgear/r6260_firmware < 1.1.0.78

netgear/r6330_firmware < 1.1.0.78

... and 9 more

Published Feb 04, 2021

Tracked Since Feb 18, 2026