Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2020-27866Authentication Bypass Using an Alternate Path or Channel in Netgear Ac2100 Firmware

CWE-288Authentication Bypass Using an Alternate Path or ChannelCWE-287Improper Authentication5 documents5 sources
Severity
8.8HIGHNVD
EPSS
90.8%
top 0.37%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
20
Netgear Ac2100 FirmwareNetgear Ac2400 FirmwareNetgear Ac2600 Firmware+17 more
Timeline
PublishedFeb 12
Latest updateMay 24

Description

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6020, R6080, R6120, R6220, R6260, R6700v2, R6800, R6900v2, R7450, JNR3210, WNR2020, Nighthawk AC2100, and Nighthawk AC2400 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the mini_httpd service, which listens on TCP port 80 by default. The issue results from incorrect string matching logic when accessing protected pages. An att

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages20 packages

NVDnetgear/r6020_firmware< 1.0.0.48
NVDnetgear/r6080_firmware< 1.0.0.48
NVDnetgear/r6120_firmware< 1.0.0.76
NVDnetgear/r6220_firmware< 1.1.0.104
NVDnetgear/r6260_firmware< 1.1.0.78

🔴Vulnerability Details

3
GHSA
GHSA-mj6p-ghhj-r3q4: This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6020, R6080, R6120, R6220, R6260,2022-05-24
CVEList
CVE-2020-27866: This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6020, R6080, R6120, R6220, R6260,2021-02-11
VulnCheck
NETGEAR ac2100_firmware Authentication Bypass Using an Alternate Path or Channel2020

💥Exploits & PoCs

1
Nuclei
NETGEAR - Authentication Bypass
CVE-2020-27866 — Netgear Ac2100 Firmware vulnerability | cvebase