CVE-2022-47209

CWE-287Improper AuthenticationCWE-798Hard-coded Credentials3 documents3 sources
Severity
8.8HIGH
EPSS
0.2%
top 59.07%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Netgear Rax30 Firmware
Timeline
PublishedDec 16
Latest updateJul 6

Description

A support user exists on the device and appears to be a backdoor for Technical Support staff. The default password for this account is “support” and cannot be changed by a user via any normally accessible means.

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages2 packages

NVDnetgear/rax30_firmware< 1.0.9.90
CVEListV5netgear_nighthawk_wifi6_routerNETGEAR Nighthawk WiFi6 Router prior to V1.0.9.90

Patches

Patch: www.tenable.comPatch: www.tenable.com

🔴Vulnerability Details

2
GHSA
GHSA-6r47-4376-p42h: A support user exists on the device and appears to be a backdoor for Technical Support staff2023-07-06
CVEList
CVE-2022-47209: A support user exists on the device and appears to be a backdoor for Technical Support staff2022-12-16
CVE-2022-47209 (HIGH CVSS 8.8) | A support user exists on the device | cvebase.io