CVE-2013-4775

Published Dec 19, 2013

Last updated 11 years ago

CVSS info 7.8

Overview

Description: NETGEAR ProSafe GS724Tv3 and GS716Tv2 with firmware 5.4.1.13 and earlier; GS748Tv4 with firmware 5.4.1.14; GS510TP with firmware 5.4.0.6; GS752TPS, GS728TPS, GS728TS, and GS725TS with firmware 5.3.0.17; and GS752TXS and GS728TXS with firmware 6.1.0.12 allows remote attackers to read encrypted administrator credentials and other startup configurations via a direct request to filesystem/startup-config.
Source: cve@mitre.org
NVD status: Analyzed

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.8
Impact score: 6.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:N/A:N

Weaknesses

nvd@nist.gov: CWE-200

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:prosafe_firmware:5.3.0.17:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "554F724F-FC50-4625-8132-4615C6E068ED"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:prosafe_gs725ts:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A7C4A5E9-4BC8-487E-AC37-340D9521CD6A"
          },
          {
            "criteria": "cpe:2.3:h:netgear:prosafe_gs728tps:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "41BF7F4E-E887-49D4-837B-6B87581BF1C5"
          },
          {
            "criteria": "cpe:2.3:h:netgear:prosafe_gs728ts:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C2842C83-3BEC-465E-8517-B1BF0BF89656"
          },
          {
            "criteria": "cpe:2.3:h:netgear:prosafe_gs752tps:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ECD778B1-CCD5-4A89-B22E-9AD552C89190"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:prosafe_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EB6E7562-34FA-4E97-A0D8-B28E2E731F9A",
            "versionEndIncluding": "5.4.1.13"
          },
          {
            "criteria": "cpe:2.3:o:netgear:prosafe_firmware:5.0.4.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "40B5584E-F422-4E80-B332-3D1B41E0AA29"
          },
          {
            "criteria": "cpe:2.3:o:netgear:prosafe_firmware:5.3.0.17:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "554F724F-FC50-4625-8132-4615C6E068ED"
          },
          {
            "criteria": "cpe:2.3:o:netgear:prosafe_firmware:5.4.0.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8AEF174C-AFBB-427D-A328-5DDB01B89921"
          },
          {
            "criteria": "cpe:2.3:o:netgear:prosafe_firmware:5.4.1.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9F8F3AB1-9A0A-43FB-A15F-4019EAC4AF17"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:prosafe_gs724t:v3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B14242B7-165D-4809-ADC6-F7C5DC4F9F7E"
          },
          {
            "criteria": "cpe:2.3:h:netgear:prosafe_s716t:v2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "99594573-A11E-47DB-B5E7-5EE2D52E812A"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:prosafe_firmware:6.1.0.12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C8B9D972-C983-48E8-A01B-AD7C79A0E739"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:prosafe_gs728txs:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8F1AE378-DCDD-4D2D-AB85-4808BAB6C4F5"
          },
          {
            "criteria": "cpe:2.3:h:netgear:prosafe_gs752txs:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FBE03F4C-37A5-4CF9-910C-654CF4032699"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:prosafe_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "858103B7-F545-42ED-A24B-4DD75613CF28",
            "versionEndIncluding": "5.4.1.14"
          },
          {
            "criteria": "cpe:2.3:o:netgear:prosafe_firmware:5.0.4.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "40B5584E-F422-4E80-B332-3D1B41E0AA29"
          },
          {
            "criteria": "cpe:2.3:o:netgear:prosafe_firmware:5.3.0.17:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "554F724F-FC50-4625-8132-4615C6E068ED"
          },
          {
            "criteria": "cpe:2.3:o:netgear:prosafe_firmware:5.4.0.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8AEF174C-AFBB-427D-A328-5DDB01B89921"
          },
          {
            "criteria": "cpe:2.3:o:netgear:prosafe_firmware:5.4.1.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9F8F3AB1-9A0A-43FB-A15F-4019EAC4AF17"
          },
          {
            "criteria": "cpe:2.3:o:netgear:prosafe_firmware:5.4.1.13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0111C987-B1CD-47A2-9140-365B08ACF764"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:prosafe_gs748t:v4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A7D8B404-2B20-425E-AA3C-22CD19E44386"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netgear:prosafe_firmware:5.4.0.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8AEF174C-AFBB-427D-A328-5DDB01B89921"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netgear:prosafe_gs510tp:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "765A5DC4-0520-4681-8F47-014FEB260256"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References